So that only a minimal presence is shown to the www? Also, to make direct access impossible even if file and directory structures are known?
I found some forum software that is really good about being able to set file and directory permissions so conservatively that it is impossible to list or read directory contents or file contents unless a server becomes compromised. The only file that is world readable with that software is index.php, along with the directory name it is in. The rest of the files and directories in that directory are not world visible, readable, or executable. That is a PHP forum software that I found, and it remains nameless here.
I would like to set up the directories and files for Dolibarr (except the startup, and just like the forum software) with this level of security.
So far it seems that I must have world readable and world executable set on too many files and directories I do not want listed or accessible at all except to the PHP program running on the server, and herein lies the crux of my question.
How is this software best locked down for security?
(This is being tested on a 3rd party hosted linux server.)
