1000 FAQs, 500 tutorials and explanatory videos. Here, there are only solutions!
Setting CHMOD 777 permissions risk free on Infomaniak systems
But this is also hugely dependent on the security of the hosting provider and the protection mechanisms that they put in place. Therefore, lower permissions with an insecure hosting provider could actually present a much greater risk.
In this instance, our access rights system is designed so that setting 777 permissions on a directory is no more risky than setting 755 with hosting providers with "standard" installations. On Infomaniak systems, setting 777 simply allows the Apache server to write to files/directories. Apart from Apache, no person other than your FTP accounts may access your Web space.
This is because instead of having scripts executed by your FTP user as is the case with other hosting providers, we have chosen to dissociate the two activities, meaning that when the server executes a script, it does to using the "httpd" user, which is a member of "Other". In short, a script, instead of being able to modify all of the files/folders in your hosting space, can only modify a file/folder if you have given permission for this file/folder to be modified by a script.
Giving ownership to "httpd" gives the same results as setting permissions to 777, given the security that we have in place on our servers. But it is not possible to set the httpd user as the owner of a file from within FTP Manager.
We recommend that you enable the FTP layer, if your CMS offers one, then set 777 permissions on files/folders that the CMS needs to modify. On a system such as Joomla, where necessary you may enable the FTP layer directly from within the Joomla configuration. You can also chose not to enable this function and simply set the access permissions on specific directories used by Joomla to 2777.
Link to this FAQ: