function security_review_check_file_perms_help in Security Review 6
Same name and namespace in other branches
- 7 security_review.help.inc \security_review_check_file_perms_help()
File
- ./security_review.help.inc, line 77
- Main help definition.
Code
function security_review_check_file_perms_help($result = NULL) {
$element['title'] = t("Web server file system permissions");
$element['descriptions'][] = t("It is dangerous to allow the web server to write to files inside the document root of your server. Doing so would allow Drupal to write files that could then be executed. An attacker might use such a vulnerability to take control of your site. An exception is the files directory which Drupal needs permission to write to in order to provide features like file attachments.");
$element['descriptions'][] = t("In addition to inspecting files, this test attempts to create and write to files. Look in your security_review module directory on the server for files named file_write_test.YYYYMMDDHHMMSS and for a file called IGNOREME.txt which gets a timestamp appended to it if it is writeable.</p>");
$element['descriptions'][] = t("<a href='!link'>Read more about file system permissions in the handbooks.</a>", array(
'!link' => url('http://drupal.org/node/244924'),
));
$last_check = security_review_get_last_check('security_review', 'file_perms');
if ($last_check['skip'] == '1') {
$element['findings']['descriptions'][] = _security_review_check_skipped($last_check);
}
elseif ($last_check['result'] == '0') {
if (is_null($result)) {
$result = security_review_check_file_perms();
}
$element['findings']['descriptions'][] = t('It is recommended that the following files or directories be corrected.');
foreach ($result['value'] as $file) {
$element['findings']['items'][] = array(
'safe' => check_plain($file),
'raw' => $file,
);
}
}
return $element;
}
