Tag Archives: MySQL

Important – 777 Permissions To Be Removed From All Servers

Due to the large scale phishing attacks happening on many of our sites due to the lack of security on many of the domains, we are taking certain steps to protect our servers and the sites from such attacks.

As a part of this, we are disabling 777 access to any website. To accomplish this, we are migrating our servers to SuPHP to secure our PHP and apache configurations. This move will make sure files cannot be written by everyone and will prevent the issue caused by the 777 permissions that were previously allowed on all files.

We are implementing this change in our shared servers on 30-Oct-2010.
suPHP is a tool for executing PHP scripts with the permissions of their owners. With this we have following advantages in shared hosting environment

No folders or files can have 777 permission and it cannot be owned by user “nobody”. This is one of the greatest advantage where we can secure the files and folders in the site as none can do anything other than the site owners.

This change will go in at midnight on 29-Oct-2010 and as of 30-Oct-2010 we will not allow any 777 access on any of our servers.

Site Owner should make following in their site
1. Make sure no 777 permission files or folders/directories present in the site. The recommendation is to change it to 755 for folders and 644 for files.
2. .htaccess file should not contain any php_value. Please move those values under php.ini file instead.

Please feel free to contact us if you need any help with this.

Resellers please pass this is to the respective site owners.

WordPress upgradation from 2.9.2 to wordpress-3.0.1

From our previous post

We have successfully upgraded our wordpressmu from 2.9.2 to 3.0.1

Here are the steps we followed for this upgradation
http://wpmu.org/how-to-upgrade-wpmu-2-9-2-to-wordpress-3-0-in-5-easy-steps/

We have also upgraded all our plugins and we are happy to say that we are in WordPress-3 club.

Have fun!!

Magento Upgrade from 1.3.1 to 1.4.1.1

Magento is one of the preferred ecommerce open source platforms we specialise in at Auro Infotech. Recently, Magento announced upgrade to 1.4.1.1 and we also decided to upgrade on of the Magento based sites that we manage.

In version 1.3.1, we faced the following error when we checkout using paypal
“There was an error proccessing your request”

We did many studies to fix this and we finally we decided to upgrade the magento to the latest version as we thought this might fix the issue. Since we developed the skin(theme) for the site, we knew it should be done with great care as we need to merge our custom code with magento code.

As always, before upgrading the live site, we upgraded the testing site with many trial and errors and atlast we did it successfully in testing. We have the steps noted down below which we took while upgrading the production site. Below are the steps which we like to share

Continue reading

Meet The Auro Team – Purushothaman

Purushothaman joined Auro Infotech last year. He is now one of the core members of the development team.

Purushothaman has been a consistent participant in the Auro Technology Research Programs  and has also won the award recently in March 2009.

Purushothaman was a key member of the team working on Funepets website, GuideVu system and many other PHP/MySQL driven sites.

Purushothaman was one of the three winners of the ‘Employee of the Year Award’ for the year 2008.

Auro Technology Research Program – Updates so far

We have completed two months of Auro Technology Research Program and have got good data to back up the progress.

Though it might be too early to say that the program is a success, I can at least say the program has started in the right direction.

In January 2009, we had six participants complete the full four weeks of research and come up with their Proof of Concept on a particular product of their choice in the technology that they picked.

The technologies and products were:

ECommerce Designs – Magento by Kandan

CRM – SugarCRM by Purushothaman

Remote Tools – Remote Desktop on Linux by Ranjith

Enterprise Applications – Dot Project Project Management Tool by Sharmila

Tools – PDFCreator by Mugunthan

Platforms and Middleware – Database – MySQL Stored Procedures by Mukesh

In February 2009 also we had six participants who completed the four weeks of research and presented their proof of concept on the presentation day.

The technologies and products in February 2009 were:

Tools – Address Book Importer by Purushothaman

Frameworks – YUI by Sharmila

Social Networking – Elgg by Mugunthan

Control Panel – Web Hosting Control Panel for Linux – OpenPanel by Ranjith

Portal – Sharepoint Portal by Sara

HRM – OrangeHRM by Umesh