Hi,
I haven't read through this entire thread, but I'll respond to the security questions.
If you are on a shared server, it's up to your webhosting provider to provide you with adequate security from other users. We can not guarantee a Gossamer Mail install will be safe from other users on a shared server, it's simply impossible given the setup of a lot of hosts. It's up to the webhost to provide you with a safe environment for your site.
Webhosting companies can set this up in a number of ways, however sadly, it's been our experience that the majority of them do not do this. They can use technologies like virtual private servers, chroot enviornments, or just plain sensible permissions, to ensure you have a safe environemnt. A stock RedHat will _not_ be safe enviornment for multiple untrusted users.
With GossamerHost, we set things up so that it is not possible for a user to view any files within the other users home directory, so permissions on files within your home directory are not as important.
The files need to default to 666 so that Gossamer Mail will work with 90% of the ISP's out there that don't run under suexec.
Hope this helps,
Alex
--
Gossamer Threads Inc.
I haven't read through this entire thread, but I'll respond to the security questions.
If you are on a shared server, it's up to your webhosting provider to provide you with adequate security from other users. We can not guarantee a Gossamer Mail install will be safe from other users on a shared server, it's simply impossible given the setup of a lot of hosts. It's up to the webhost to provide you with a safe environment for your site.
Webhosting companies can set this up in a number of ways, however sadly, it's been our experience that the majority of them do not do this. They can use technologies like virtual private servers, chroot enviornments, or just plain sensible permissions, to ensure you have a safe environemnt. A stock RedHat will _not_ be safe enviornment for multiple untrusted users.
With GossamerHost, we set things up so that it is not possible for a user to view any files within the other users home directory, so permissions on files within your home directory are not as important.
The files need to default to 666 so that Gossamer Mail will work with 90% of the ISP's out there that don't run under suexec.
Hope this helps,
Alex
--
Gossamer Threads Inc.