Permission set to httpd on s9y files - BAD on shared hosting

[Max Pain]

(This refers to both 0.9 beta 3 and 0.85)
The result is complete inability to backup, modify, overwrite, edit, not using the backup plugin, H-Sphere's backup feature or even the shell command-line.
I don't own the server I host Serendipity on, I have a shared hosting account. It's a server running FreeBSD and I have shell access, so I can view various info and control pretty much anything, that is, if I have proper permission to do so. Using the shell I can see that the permissions of some of Serendipity's files are changed (e.g. serendipity_config_local.inc.php ) to "httpd" instead of my username. As I mentioned, I don't control the entire server, so files that belong to httpd, I can't do anything with. This makes it impossible to properly backup, edit and probably upgrade Serendipity, and unfortunately leaves me no choise but to use something else, which I wouldn't like to do since I prefer Serendipity from all other blog solutions I've tried.
Please fix this issue, especially before 0.9 is out.

[garvinhicking]

Please read http://www.s9y.org/forums/viewtopic.php ... highlight=

This is easily fixable with a simple PHP script, and instead of making s9y more insecure, this is the recommended way.

It's a problem of your hoster's setup, which is done inproperly - so it's not a bug with serendipity. It's a global concept which is just not paid enough attention in your setup, but as it can be bypassed easily, this shouldn't be a problem.

Regards,
Garvin