Does Wordfence check for Chmod 777

  • Hello WordFence.

    This is a Feature Request.

    I have a WordPress installation that has a popular paid theme installed on top of it.

    My hosting provider warned me that a folder created by my theme had chmod set to 777.

    I didn’t go this! So I checked on the theme’s forum and was alarmed to find this incident/flaw was reported to them 2 years ago! Still with no fix!

    I appreciate that I should harden WordPress myself as per the recommended instructions here:

    https://codex.www.ads-software.com/Hardening_WordPress

    i.e. A recursive chmod of Directories to 755 and Files to 644.

    Then I thought it would be a great feature of WordFence if it warned me when folders or files with my WordPress Installation had any dangerous permissions set on them e.g. 777

    Any thoughts?

    Thanks in advance!

Viewing 2 replies - 1 through 2 (of 2 total)

  • Hi lordliverpool,

    Thanks for the feedback. Might be doable. I will put it in as a feature request.

    Thread Starter LordLiverpool

    (@lordliverpool)

    @wflandon

    Thanks for replying.

    Yes this would be a great feature. I suspect there are lots of other WordPress sites out there that are vulnerable due to this sort of basic mistake.

    Thanks very much.

    Best Regards.

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Does Wordfence check for Chmod 777’ is closed to new replies.