Never ever do "chmod 777"

[brian32768]

In install.sh remove the line that chmods /etc/svxlink

You should never ever have any folder in /etc/ with no control on write access.

[f5vmr]

See my comments on the other post. I have yet to find a suitable security combination that permits the PHP webserver to operate succesfully on the files outside of the webserver within the svxlink operating system. As these devices are generally tightly secured under control of a single sysop on a relatively secure network, I have no issues with it although there are perhaps other options....... to follow.

[brian32768]

On 2024-06-02 15:03, Chris G4NAB_F5VMR wrote:

Closed #8 as completed.

When you CLOSE AS COMPLETED it's like saying "this is DONE" when in fact it's a TERRIBLE security practice.

How about re-opening it and commenting "Brian, show how you'd fix this issue once you know more about it"?