permissions prevent this from working out of the box

Question

permissions prevent this from working out of the box

Closed this issue 7 years ago · 1 comments

PR #63 made the sensible change of defaulting to mode 0640. Unfortunately, now that means that out of the box on most distros this will no longer work, as the webserver user is not root.

This should either be reverted, or (better) the module should be updated with a params class to figure out a better owner.

Answer 1 · 2018-03-29T16:35:08.000Z

I made it 0644 in #91, but I still need to figure out what to do about this because of https://codex.wordpress.org/Hardening_WordPress#Securing_wp-config.php unless it's just a "wp should solve this themselves" kind of thing.