In order to ensure that your blog is safe from prying eyes, we are running this security check series. We’ve already discussed some of the basic stuff and today we are going to ensure that the file & directory permissions should be right. In this guide we’ll fix the CHMOD of various important files and folders of your blog.

What is CHMOD?

The chmod command (abbreviated from change mode) is a shell command and C language function in Unix and Unix-like environments. When executed, it can change file system modes of files and directories. The modes include permissions and special modes.

The values that we are playing with are -

755 – 755 means read and execute access for everyone and also write access for the owner of the file.
644 – 644 means that it can be written by you, however can only be read by rest of the world.

1. Root directory – This is the directory where your WordPress is installed. This directory needs CHMOD value as 755.
2. wp-includes – This is the sub-directory and has various important files that perform various important functions for the blog. This directory needs CHMOD value as 755.
3. wp-admin/index.php – This is the file that displays you the WordPress Dashboard. It requires 644 as the CHMOD value.
4. wp-admin, wp-admin/js/ – Both these folders have the files that are again useful in various WordPress admin section. They requires 755 as the CHMOD value.
5. wp-content/, wp-content/themes/, wp-content/plugins/ – These three folders require the CHMOD value as 755 and these are the folders where you store the theme [ you can't beat us on that ;) ] and plugins.

How can I change these values?

You’ll need an FTP software for the same. FileZilla is an excellent, free and open-source software that should take care of all your needs. In most of the FTP software, you just need to right click on it and you’ll see something like Properties or Get Info or Permissions as the option where you’ll be able to change the CHMOD value.

If you really want to ensure that your WordPress blog should be safe and secure then you should change the CHMOD value of all these directories and files. This should keep things slightly tight for the notorious fellows.

4 Comment
Tags: ,

Featured Designs

Parent Society

Parent Society

Marijuana Maps

Marijuana Maps

Cake Journal

Cake Journal

CopyKat Recipes

CopyKat Recipes

Jessica Denay

Jessica Denay

Keith Ferrazzi

Keith Ferrazzi

Rennaissance Yoga

Rennaissance Yoga

Brink Zone

Brink Zone

Illustrious Author

Illustrious Author

Boca Care

Boca Care

KingsCast

Kingscast

Notecook

Note Cook

My Business Musings

My Business Musings

4 Responses so far | Have Your Say!

  1. brett

    how do I find the root directory?

  2. @brett – you need to login to ftp and from there navigate to the folder where wordpress is installed and you can change the permissions from there :) use filezilla software to connect to ftp.

  3. Thank u for these valuable informations , Is there are any other instructions ( other important values ) for security.

  4. shab

    Hello Mayank,

    what if my webserver cant work properly if I set 644 to wp-admin/index.php? I got an internal server error… :-(