Fr3DBr Posted August 4, 2016 Share Posted August 4, 2016 Hi, guys. The health check of whmcs is currently reporting this: Your configuration file is writable. This can be a security risk. We recommend setting the permissions to read only.You can learn more about this in our documentation. Although, here are our config files for whmcs and crons permissions: whmcs (644): -rw-r--r--. 1 cst cst 373 Aug 2 23:37 configuration.php crons (644): -rw-r--r--. 1 cst cst 89 Aug 2 23:55 config.php So what else could be the issue ? We are using the latest v6 build. - - - Updated - - - Ok, it was necessary to set the permission as : 400 instead of 644. 0 Quote Link to comment Share on other sites More sharing options...
brian! Posted August 4, 2016 Share Posted August 4, 2016 http://docs.whmcs.com/Installing_WHMCS When complete, delete the install folder from your web server and CHMOD the configuration.php file back to 644. Required file & folders permissions /configuration.php CHMOD 400 Readable /attachments CHMOD 777 Writeable /downloads CHMOD 777 Writeable /templates_c CHMOD 777 Writeable that contradiction for the CHMOD of configuration.php has been there in the docs for at least 3 years - I can recall reading it when I first installed WHMCS. 0 Quote Link to comment Share on other sites More sharing options...
twhiting9275 Posted August 6, 2016 Share Posted August 6, 2016 Yeah, that's something you can safely ignore. If you want to be really 'secure', you can change configuration.php to 400 , not so sure it' worth it though 0 Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.