permissions prevent this from working out of the box
Closed this issue · 1 comments
binford2k commented
PR #63 made the sensible change of defaulting to mode 0640
. Unfortunately, now that means that out of the box on most distros this will no longer work, as the webserver user is not root
.
This should either be reverted, or (better) the module should be updated with a params class to figure out a better owner.
hunner commented
I made it 0644 in #91, but I still need to figure out what to do about this because of https://codex.wordpress.org/Hardening_WordPress#Securing_wp-config.php unless it's just a "wp should solve this themselves" kind of thing.