File/Folder security & permissions ...
I admin one of our company sites . I'm not a born admin or guru , so the other day when I typed the following into a browser :
ftp://ftp.COMPANY.com/ (real name witheld)
I saw a number of folders :
bin - etc - lib - mail - pub
I , as anyone else could access those folders & look inside .
All were empty except lib & mail . Mail had 1 file of 0 bytes . Lib has several files :
ld-2.1.3.so : ld-linux.so.2 : libc.so.6 : libc-2.1.3.so : libnsl.so.1 : libnsl-2.1.3.so : libnss_files.so.2 : libnss_files-2.1.3.so
Everyone of those files can be accessed and/or downloaded .
SHOULD this be possible ?? - and if NOT what's the best way to safeguard these folders/files - are they important ??
We use Cpanel with this particular host . I went into File Management and played arround a little with "permissions" - but all I succeeded in doing was altering permissions for some ofther folders/files , such as WWW etc.
I need help from somone who can tell me the best (safest) level permissions to use on the main site working folders/files .
I'm basicaly looking for the best CODE (eg. 505,700) to use as permissions for the highest level of safety .
We (company) mainly use the server email & webmail . Thus there are other users who need to be able to access those but nothing else . (they need to be able to also change their passwords in Neomail) .
Thanks for any help .
