View Issue Details

IDProjectCategoryView StatusLast Update
0019779phpList 3 applicationInstallationpublic19-07-19 15:33
Reporterduncanc Assigned To 
PrioritynormalSeverityminorReproducibilityhave not tried
Status resolvedResolutionfixed 
Product Version3.3.9 
Target Version3.4.0Fixed in Version3.4.0 
Summary0019779: Incorrect file permission for the admin/plugins directory
DescriptionThe phplist distribution file downloaded from SourceForge has incorrect permissions for the admin/plugins directory, 777 instead of 755 as for all other folders.

Some anti-malware software will prohibit access to directories with permission of 777.
TagsNo tags attached.



19-02-19 12:38



20-02-19 17:28

reporter   ~0061916

That seems to be the case since version 3.3.2 when additional plugins were added by default. Not sure if that was in purpose.
@samtuke @michiel ?


20-02-19 18:15

updater   ~0061917

Last edited: 20-02-19 18:21

View 2 revisions

Just to clarify what happens when the plugins directory has permissions of 777.

When using the CKEditor plugin, the file browser window for inserting an image shows a 404 error (see screenshot). After changing the permssion to 755 the file browse window is displayed correctly.

The url for the window is similar to this

This error is in the web server log
Wed Feb 20 10:09:53.295350 2019] [:error] [pid 22480:tid 47654437066496] [client]

SoftException in Application.cpp:657: Directory "/home/farmstea/public_html/lists/admin/plugins" is writeable by group, referer:

which appears to come from suPHP.


20-02-19 20:52

manager   ~0061918

If I introduced it then it wasn't intentional and can be reversed.


09-03-19 06:39

updater   ~0061997

In the new 3.4.0-RC1 the permissions for the plugins directory have been changed from 777 to 775, see new screenshot, which is still group-writeable.
The permissions need to be 755, the same as other directories, to avoid the suPHP problem.
3.4.0-RC1.png (12,462 bytes)   
3.4.0-RC1.png (12,462 bytes)