Simple file permission question (I hope)
At the moment the upload folder is owned by the site owner, with permissions of 777. However files uploaded to the folder through the website are owned by apache (nothing unexpected there) but get a permission flag of 664, so world has only read permission.
I could write some PHP to do a chown and/or chmod, but I just want to check if there's a way to do it automatically first.
Is there any way I can set the default permission of new files in the directory to 666?
Alternatively, should I make my FTP users members of the apache group, or would that open a security hole?