Database/Folder Permissions

Hi!

What kind of permissions should my database and database containing folder
have?

I have the ability to set Read Only, Read/Write, or Full Control on files
and folders. My database, currently, is just located in my wwwroot
directory. When I go live, it will be moved to the data directory which is
one folder up from the wwwroot therefor making it inaccessbile to the
outside world. But what kind of permissions do I need? And whats the
difference between Read/Write and Full?

Jordan

Jordon,

What kind of database backend are you talking about?

You definately dont want to give "full control" access to the database.
Full control will allow people to change permissions to your database,
stealing all your information and locking you out of it.

Depending on what type of pages you are creating and how you are going to be
interacting with the database, usually read or read/write works.

You might look into moving your database completely off your web server as
well. Web servers are prone to being attacked/hacked. A lot of hackers
love to find databases on web servers. If you move your database off on to
its own server (behind a firewall preferably) you protect your information a
lot more.

Hope that helps.


"Jordan Marton" <JMarton (AT) HAHAmarketaxess (DOT) com> wrote

Quote:

Hi!

What kind of permissions should my database and database containing folder
have?

I have the ability to set Read Only, Read/Write, or Full Control on files
and folders. My database, currently, is just located in my wwwroot
directory. When I go live, it will be moved to the data directory which is
one folder up from the wwwroot therefor making it inaccessbile to the
outside world. But what kind of permissions do I need? And whats the
difference between Read/Write and Full?

Jordan