Title: db-backup security Last modified: May 8, 2019 --- # db-backup security * Resolved [joy0114](https://wordpress.org/support/users/joy0114/) * (@joy0114) * [7 years ago](https://wordpress.org/support/topic/db-backup-security/) * Hello, * I’ve just install your plugin. I wonder about the security for the db-backup directory. * I’m not sure this is safe to keep this directory with 755 permissions and the backup zip with 644. Would not be better to set it to 700 for directory and 600 for file? Please, could you inform me about this question ? * Thanks a lot best regards Bertrand Viewing 1 replies (of 1 total) * [Prashant Walke](https://wordpress.org/support/users/walkeprashant/) * (@walkeprashant) * [7 years ago](https://wordpress.org/support/topic/db-backup-security/#post-11523869) * Thanks for your interest in WP Database Backup. * WordPress needs certain features to create and modify files. WordPress allows us to upload and remove themes and plugins and even edit scripts and styles from the administrative back end. * First, we need to adjust the file and folder ownerships of our WordPress files. We’ll have to make sure of the following: * That your user account is the owner of all WordPress files and folders, * That your user account and the Web server’s user account belong to the same group. * The Difference Between 644 And 755 * 644 : * The owner’s privileges are “read” (4) + “write” (2) = 6 The owner’s group privileges are “read” (4) = 4 Everyone else’s privileges are “read” (4) = 4 * This means that if we own the script, we may read and modify it; everyone else may only read it. * As we can see, 644 is a good permission mode for our PHP script. We can make changes to it, and our Web server can read it. * 755: The owner’s privileges are “read” (4) + “write” (2) + “execute” (1) = 7 The owner’s group privileges are “read” (4) + “execute” (1) = 5 Everyone else’s privileges are “read” (4) + “execute” (1) = 5 * This means that * anyone may get a list of file names in our folder; anyone may create, modify and delete any file in our folder; anyone may access the files in our folder. * A lot of different server configurations are out there. Different configurations need different sets of permission modes for WordPress to work correctly and securely. * **Standard server configuration:** You have a user account. Your Web server runs as another user account. Permissions For A Shared Server backup folder : 644 * **Shared server configuration:** You have a user account. Other people who use the server have user accounts and might share the same group with your user account. Your Web server runs as the owner of your WordPress files. Permissions For A Shared Server backup folder : 755 * **If you run WordPress on Standard server then set 644 permissions and If you run WordPress on Shared server then set 755 permissions Viewing 1 replies (of 1 total) The topic ‘db-backup security’ is closed to new replies. * ![](https://ps.w.org/wp-database-backup/assets/icon-256x256.png?rev=2838048) * [WP Database Backup - Unlimited Database & Files Backup by Backup for WP](https://wordpress.org/plugins/wp-database-backup/) * [Frequently Asked Questions](https://wordpress.org/plugins/wp-database-backup/#faq) * [Support Threads](https://wordpress.org/support/plugin/wp-database-backup/) * [Active Topics](https://wordpress.org/support/plugin/wp-database-backup/active/) * [Unresolved Topics](https://wordpress.org/support/plugin/wp-database-backup/unresolved/) * [Reviews](https://wordpress.org/support/plugin/wp-database-backup/reviews/) * 1 reply * 2 participants * Last reply from: [Prashant Walke](https://wordpress.org/support/users/walkeprashant/) * Last activity: [7 years ago](https://wordpress.org/support/topic/db-backup-security/#post-11523869) * Status: resolved