Question Get an FTP folder writable but not executable

[domenicodattoma]

Hi,

I need to create a folder that

• is writable through an FTP account
• is writable through a PHP script located in the folder above
• cannot contain PHP files or at least its file can't be executed

How can I achieve that?

I've tried to set the permission but if I switch off the executable permission I can't read the folder with FileZilla (or other FTP clients).

Thank you in advance.

 

[Monty]

Is there any reason for the folder to be inside the document root (/httpdocs)?
If not, then simply create an FTP access to a folder outside of it, example /ftpfolder
Content of that folder won't be accessible via HTTP/HTTPS.

If your ftp folder for some reason needs to be inside your /httpdocs folder then you can restrict access to files in it using Apache Access Control directives in a .htaccess file inside that folder, more info: Access Control - Apache HTTP Server Version 2.4

 

[mow]

I've tried to set the permission but if I switch off the executable permission I can't read the folder with FileZilla (or other FTP clients).

executable on a folder is for the folder itself, not for the files it contains. The action that executabe controls is opening the folder.
Closest I can think of is using the folder as a mount point and mounting a filesystem with option noexec. However, that will only stop direct execution of binaries, it will not prevent php from loading and executing scripts.