sorry for “breach” term (my english isn’t good).
I just say what I saw. I had use this plugin in 2 distinct VPS on OVH hosts (one with Plesk and auto-install WP script, and other only Debian).
A php file with the right to write for public user, it’s …
But I don’t understand, when WP update Core or install/update plugins, I never see php file with o+w.
In CTC plugin files, we can see (includes/classes/Admin.php, lines 1081 and 1110):
$mode = 'direct' == $this->fs_method ? FALSE : 0666; why not 0664 or 0660 ?
But sorry, review isn’t the best place for Questions/Answers.
