Security
In this section, we will discuss the permissions on filesystems that have to be set in order to make sure that your site is safe. Also, we will discuss captcha
and the mod_security
module for Apache, which can cause certain issues arising from security concerns and how to solve them. When using a content management server, unless you are writing snippets yourself, there is not much to worry about. There are a few things to keep in mind though, for MODx, and they are mentioned next.
File permissions
It is a good practice to set read-only permissions on all files except folders that will be updated by MODx. In Linux, you can do this through chmod 0644 * -R
within the MODx directory. Some folders must be made writable by using chmod 0755
folder. The following is a list of such folders:
assets/cache
assets/files
assets/media
When you are using an external snippet that requires you to store files in a separate folder, make sure that you make those files writable too. For example, the gallery...