A Website is placed on a web server. Inside a particular directory(or more). Inside this directory are other
directories and so on. Certain files may be created, accessed, deleted by the website. The permissions need
to be set in place where only the particular files that are necessary to be amended can only be amended by the
website and no other external body. Such folders also need to be renamed as using common names such as
“emails” “xml” “database” “backup” will be targeted first.
WebSafe will test for Directory Permissions Access:
By scanning for the hundred most commonly used directory names we can tell which directories most likely
contain sensitive information. Using this it is possible to try and access the files inside these directories.
This will highlight and permissions that have not been setup correctly.