Feature request to have exemption in the file permission check in Pantheon

Carl Alberto
(@carl-alberto)

1 month, 1 week ago
Hi Security Safe plugin team!

First of all, awesome plugin that you have here where it has a feature to detect the file permission of the files to check the security.

Would it be ok if we can have a feature request to have host specific exemptions for container-based web host like Pantheon where the default wp-content/uploads folder has 770 permissions?

Thanks in advance!
- This topic was modified 1 month, 1 week ago by Carl Alberto.
The page I need help with: [log in to see the link]

Viewing 7 replies - 1 through 7 (of 7 total)

Plugin Contributor Steven Ayers
(@stevenayers63)

1 month, 1 week ago

@carl-alberto,

Absolutely. Is there a reliable way that I can detect that a site is hosted on Pantheon? If you use any PHP constant variables, then I can check for that and allow an exception.

Also, if there are other aspects of making WP Security Safe more compatible with Pantheon hosting, please let me know.

Thank you for reaching out.

-Steven

Thread Starter Carl Alberto
(@carl-alberto)

1 month, 1 week ago

Thanks for the quick reply @stevenayers63 and for accommodating our request.

You can use $_ENV['PANTHEON_ENVIRONMENT'] to check if you are hosted in the platform, there are sample codes in here https://pantheon.io/docs/environment-specific-config#define-wp_debug-to-perform-actions-based-on-environment

Also, you can sign up for free https://pantheon.io/register in the platform and spin up a sandbox site to test out your code and plugin

Plugin Contributor Steven Ayers
(@stevenayers63)

1 month ago

@carl-alberto I will roll out this feature on my next release and notify you about it.

-Steven

Plugin Contributor Steven Ayers
(@stevenayers63)

1 week, 1 day ago

@carl-alberto,

I just released version 2.4 of WP Security Safe and it accommodates the Pantheon permissions 770 for the directory “uploads” and all of its children directories.

-Steven

Thread Starter Carl Alberto
(@carl-alberto)

5 days, 1 hour ago

Hi @stevenayers63,

Thanks for the update, but upon checking, it still has a different error https://www.screencast.com/t/xaAkvjiono

If it would help to have a test site from us, would love to create one from you, just let me know your email so I can send the creds. Thanks!

Plugin Contributor Steven Ayers
(@stevenayers63)

5 days, 1 hour ago

@carl-alberto,

It was my understanding that the directories only needed 770 permissions. Based on your screenshot, you also need files to be 770? Please confirm.

I can release an updated version fairly quick to resolve this issue.

-Steven

Plugin Contributor Steven Ayers
(@stevenayers63)

4 days, 23 hours ago

@carl-alberto,

I just made some adjustments and tested using the Pantheon WordPress sandbox. I apologize as I assumed your were only referring to the directories permissions. Version 2.4.1 has been released and accommodates both the directories and files to have 770 in the uploads directory.

-Steven

Viewing 7 replies - 1 through 7 (of 7 total)

You must be logged in to reply to this topic.

WordPress.org

Feature request to have exemption in the file permission check in Pantheon

Topic Tags

Views