Development / Magento / Servers
2

Setting Secure Working Permissions for Magento (Chown/Chmod) SSH

by Geoff Jackson · Published November 15, 2015 · Updated December 4, 2015

There is a lot of content on the web about setting the correct (secure) permissions for Magento, much of which, differs somewhat.

We’ve detailed below, what we feel are decent permissions which leave your Magento store secure and protected whilst giving the necessary access across the site in order for Magento to continue functioning as expected/intended.

If running as server user.

Setting secure permissions for Magento

Shell

chown -R apache:apache *
find . -type f \-exec chmod 644 {} \;
find . -type d \-exec chmod 711 {} \;
find ./media -type d \-exec chmod 775 {} \;
find ./var -type d \-exec chmod 775 {} \;
find ./media -type f \-exec chmod 664 {} \;
find ./var -type f \-exec chmod 664 {} \;
chmod 640 ./app/etc/*.xml
chmod 550 mage

chown -R apache:apache *

find . -type f \-exec chmod 644 {} \;

find . -type d \-exec chmod 711 {} \;

find ./media -type d \-exec chmod 775 {} \;

find ./var -type d \-exec chmod 775 {} \;

find ./media -type f \-exec chmod 664 {} \;

find ./var -type f \-exec chmod 664 {} \;

chmod 640 ./app/etc/*.xml

chmod 550 mage

If not running as server user (apache), the above permissions will cause 500 internal server error.

You can learn more on secure permissions for Magento at this in-depth explanation of the above at Nexcess or from the official Magento documentation.

Like this:

Like Loading...

Tags: ssh

Geoff Jackson

Geoff Jackson (more commonly known by his online pseudonym zigojacko) is the founder of Design Haven and The Clubnet Group which hosts numerous agencies including the most widely recognised of them, Clubnet Digital, a full service digital marketing and creative design/development agency. He also has a personal blog but it doesn't get updated as much as he'd like.

Subscribe to Design Haven UK

Enter your email address to subscribe and receive our new posts by email.

Email Address

2 Responses

Comments2
Pingbacks0

Ikram says:

December 4, 2015 at 3:41 pm

Thansk a lot GEOFF JACKSON .. this post help me lot during magento multi shop setup

Best Regards

Reply
- Geoff Jackson says:
  
  December 4, 2015 at 3:48 pm
  
  Glad you found this useful Ikram!
  
  Reply

Recent Activity

Recent Posts
Popular Posts
Recent Comments
Tags

Software / Windows

How to Properly Uninstall Skype from Microsoft Store on Windows 10

16 Jul, 2019
Development

6 Great Tools for Web Project Documentation

6 Sep, 2016
Development / Security / Wordpress

Complete Guide to WordPress Security

22 Jun, 2016
Development / Magento / Servers

Setting Secure Working Permissions for Magento (Chown/Chmod) SSH

15 Nov, 2015
Servers

Reset / Correct Server Permissions for Plesk via SSH

22 Sep, 2015

Development / Magento

Magento Multi-Store with Different Themes & Domains Hosted on Plesk Server

1 May, 2015
Development / Magento

Cleanly Delete all Orders, Sales & Customer Data in Magento

21 Aug, 2014
Development / Magento

Force Removal of Store Code (?___store=default) from URL’s in Magento

8 Oct, 2013
Development / Magento

Orders Stuck in Pending Payment in Magento Due to Paypal Disabling IPN

28 Apr, 2015
Magento / SEO

Permanently (301) Redirecting /home in Magento

13 Dec, 2012

BUSY: La operación de actualización ha sido bloqueada por otro proceso de actualización. (Plesk) - Informática y nada más says:

[…] Fuente: https://www.designhaven.co.uk/2015/05/cant-upgrade-plesk-busy-update-operation-was-locked-by-another… […]
Geoff Jackson says:

You're welcome Matt
Matt says:

Thank you so much! Skype and Microsoft are so annoying.
Geoff Jackson says:

Hey Roberto, That won't be easy with SQL queries as there...
Roberto says:

Thank you very much, it has served me and it is...

.htaccess adobe fireworks ajax api bash database queries default quantity deleting database data design freebies getMinimalQty getProductDefaultQty html5 icon sets infinate scrolling infographics inspiration javascript javascript api jquery line breaks magento magento bugs magento connect movie icon set mysql mysql truncate navicon nl2br patches plesk png reindex responsive scrollextend security sh smashingmagazine ssh usability user experience ux wordpress wordpress security wysiwyg

#1 DIY SEO Course - Perfect for Small Businesses

Like Us on Facebook

Design Haven UK

Magento Help
WordPress Help

Setting Secure Working Permissions for Magento (Chown/Chmod) SSH

You may also like...

Sponsored Links...