在LAMP(Linux+Apache+MySQL+PHP)环境中,合理的权限设置对系统安全至关重要。以下是关键权限设置要点:
sudo chown -R www-data:www-data /var/www/html
sudo chmod -R 750 /var/www/html
sudo chown -R www-data:www-data /var/www/html/uploads
sudo chmod -R 770 /var/www/html/uploads
sudo chown -R root:root /etc/apache2
sudo chmod -R 644 /etc/apache2
在php.ini中配置:
open_basedir = /var/www/html
disable_functions = exec,passthru,shell_exec,system
upload_tmp_dir = /var/www/html/uploads
CREATE USER 'appuser'@'localhost' IDENTIFIED BY 'strongpassword';
GRANT SELECT, INSERT, UPDATE, DELETE ON appdb.* TO 'appuser'@'localhost';
ls -la /var/www/html
正确的权限设置能有效防止未授权访问和数据泄露,是LAMP环境安全的基础保障。