Phoca Extensions - Security Settings

Category: Phoca

Phoca Extensions use standard Joomla! filesystem methods. Folders in Phoca Extensions are created with help of JFolder method and permissions are set to 755. As many hacking robots can write malignant code to folders with permissions set to 777 without any problems, creating of folders with such permissions (777) was deprecated. 

Using 755 permissons can be problematic on some servers as they only allow to write files and folders into folders with permissions set to 777. This can be very dangerous. If you have problem with permissions on your server, try to enable FTP layer in your Joomla! Global Configuration. (The FTP layer should be enabled before installing Phoca Extensions, so created folders will have the same ownership as your FTP account).

If enabling or disabling FTP layer didn't help, try to ask your webhosting provider to check permissions and ownership settings on your server.

In worst case you can test to set the permissions of folders to 777.


Changing permissions in Phoca Gallery

During installation, Phoca Gallery creates images/phocagallery folder with permissions set to 755. This can be changed in file or ftp manager. It is not recommended to change it to 777 because of security.
While using Phoca Gallery, it creates folders for categories (subfolders in folder images/phocagallery) and thumbnails. These folders have rights set to 755 as default. You can change it to other value in Parameters (Component » Phoca Gallery » Control Panel »Parameters » Security Settings » Folder Permissions). Changes will take effect only for newly created folders (Permissions of previously created folders can be changed in file or ftp manager).
If you have problems with thumbnails creating, try to set rights of images/phocagallery folder to 777, rights of all subfolders in this folder to 777 and Parameter Folder Permissions to 777. If permissions of all Phoca Gallery folders are set to 777, try to test creating of thumbnails. If thumbnails are created, the problem of thumbnails creating is caused by permissions. You need to enable FTP layer or contact your webhosting operator to solve this problem.  After testing it is recommended to set it back to 755 because of security.
Thumbnails can be created by the following ways:
  • Using JFile method - Joomla! framework's JFile method can create thumbnails with help of FTP layer. If you have enabled FTP layer and folders have ownership of your FTP account, you should enable this parameter (JFile Thumbnail Creation set to Yes)
  • Not using JFile method - If you are not using FTP layer, try to disable this parameter, so thumbnails can be created by server script (with server script ownership).


Changing permissions in Phoca Download

During installation, Phoca Download creates phocadownload folder in root with permissions set to 755. This can be changed in file or ftp manager. It is not recommended to change it to 777 because of security.



Powered by Phoca