In order to ensure that your blog is safe from prying eyes, we are running this security check series. We’ve already discussed some of the basic stuff and today we are going to ensure that the file & directory permissions should be right. In this guide we’ll fix the CHMOD of various important files and folders of your blog.
What is CHMOD?
The chmod command (abbreviated from change mode) is a shell command and C language function in Unix and Unix-like environments. When executed, it can change file system modes of files and directories. The modes include permissions and special modes.
The values that we are playing with are -
755 – 755 means read and execute access for everyone and also write access for the owner of the file.
644 – 644 means that it can be written by you, however can only be read by rest of the world.
1. Root directory – This is the directory where your WordPress is installed. This directory needs CHMOD value as 755.
2. wp-includes – This is the sub-directory and has various important files that perform various important functions for the blog. This directory needs CHMOD value as 755.
3. wp-admin/index.php – This is the file that displays you the WordPress Dashboard. It requires 644 as the CHMOD value.
4. wp-admin, wp-admin/js/ – Both these folders have the files that are again useful in various WordPress admin section. They requires 755 as the CHMOD value.
5. wp-content/, wp-content/themes/, wp-content/plugins/ – These three folders require the CHMOD value as 755 and these are the folders where you store the theme [ you can't beat us on that ;) ] and plugins.
How can I change these values?
You’ll need an FTP software for the same. FileZilla is an excellent, free and open-source software that should take care of all your needs. In most of the FTP software, you just need to right click on it and you’ll see something like Properties or Get Info or Permissions as the option where you’ll be able to change the CHMOD value.
If you really want to ensure that your WordPress blog should be safe and secure then you should change the CHMOD value of all these directories and files. This should keep things slightly tight for the notorious fellows.