Should I change the default folder for uploads?

security apache-2.4 php-fpm ubuntu-20.04

Solution 1:

I think it is usually not needed to change the upload folder, because

  • The default access mode of the temporary files is 0600, and they are owned by the user running the PHP process. This means that other users cannot access the files by default.
  • /tmp has the sticky bit set, which means that even its access permissions are 777, only the owner of a file can delete any files (and root, of course).
  • Usually servers are dedicated computers, and nowadays with containers and virtualization even more so. This means that there are probably no other users are present who might take a peek to the uploaded files in transit.
  • The files are there only temporarily, if the script handling the file upload exits, the files are deleted. So even if there are untrusted users/processes around, they would need a race condition (which might exist, BTW) to access the files, and they still need to overcome the access restrictions mentioned before.
  • If someone unauthorized from the internet manages to access the file system of your computer, the temporary uploaded files are the least of your problem.

Related

nginx reverse proxy without base url
AWS ECS Fargate Task cannot pull secrets from SSM
What is meant by collapse CNAME?
Can't write to /tmp in systemd service with PrivateTmp=true
Reverse DNS for multiple subdomains
Access files in system tmp directory, when using PrivateTmp
Why is restarting tomcat9 resolving networking issues?
How to implement Anycast DNS
Can VMWare ESX(i) pull the serial numbers of the physical hard drives of its physical host?
What is the Linux equivalent of MacPorts?
With sshfs, what causes the error "fuse: bad mount point `<directory>': Permission denied"?
Cannot install MS Office updates