Skip to content

Instantly share code, notes, and snippets.

@heyfletch

heyfletch/wp-permissions-script

Forked from vancouverwill/wp-permissions-script
Last active August 29, 2015 14:22
Show Gist options
  • Save heyfletch/c21e9873359ed631ca1e to your computer and use it in GitHub Desktop.
Save heyfletch/c21e9873359ed631ca1e to your computer and use it in GitHub Desktop.
Download ZIP
Raw
wp-permissions-script
#!/bin/bash
#
# This script configures WordPress file permissions based on recommendations
# from http://codex.wordpress.org/Hardening_WordPress#File_permissions
#
# Author: Michael Conigliaro
#
WP_OWNER=web # -- wordpress owner
WP_GROUP=www-data # -- wordpress group
WP_ROOT=/srv/www/webproguru/project/web # -- wordpress root directory
WS_GROUP=www-data # -- webserver group
CURRENT_USER=$(whoami)
# reset to safe defaults
find ${WP_ROOT} -exec chown ${WP_OWNER}:${WP_GROUP} {} \;
find ${WP_ROOT} -type d -exec chmod 755 {} \;
find ${WP_ROOT} -type f -exec chmod 644 {} \;
# allow wordpress to manage wp-config.php (but prevent world access)
chgrp ${WS_GROUP} ${WP_ROOT}/wp-config.php
chmod 660 ${WP_ROOT}/wp-config.php
# allow wordpress to manage .htaccess
#touch ${WP_ROOT}/.htaccess
#chgrp ${WS_GROUP} ${WP_ROOT}/.htaccess
#chmod 664 ${WP_ROOT}/.htaccess
# allow wordpress to manage wp-content
find ${WP_ROOT}/wp-content -exec chgrp ${WS_GROUP} {} \;
find ${WP_ROOT}/wp-content -type d -exec chmod 775 {} \;
find ${WP_ROOT}/wp-content -type f -exec chmod 664 {} \;
#sudo chown -R ${CURRENT_USER}:${CURRENT_USER} .git
@heyfletch
Copy link
Author

Save the file as wordpress-perms.sh and set appropriate permissions for that script file using the following command:
chmod +x wordpress-perms.sh

Run the script with the following command:
./wordpress-perms.sh

After successful execution delete wordpress-perms.sh script file and then you are done.
rm wordpress-perms.sh

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment