I'm running MediaWiki 1.30.0 on a remote server which uses a platform called Fusion Forge. The PHP version is 5.6.33-0+deb8ul. The mysql version is 5.5.59-0+deb8ul (Debian). URL of the wiki is https://comun.ourproject.org/en/w/
It is a new installation, about 3 weeks old.
Everything is working fine, as far as I know, except one thing:
Images. They upload OK. But the directory permissions get set so that the file is unreadable to anyone but the system administrator. So the files are there but can't be displayed.
Example: I just uploaded a file callled CBGB_club_facade.jpg. A subdirectory of /images/ was created: /images/d/da/ .
The file is there: /images/d/da/CBGB_club_facade.jpg . But the file permissions of /images/d/ are:
drwx--S---
In other words, system administrator can read, write and execute, but no one else can get into the directory. So the image does not display.
The file permissions of the image itself are:
-rw-r--r--
So everybody, admin, group and others, have read permissions here and could presumably read the file if they could get into the directory but they can't.
If I change the directory permissions manually, by logging onto the server and using the shell program, the file would become viewable. I have done this with several files already, e.g., File:Simple_surplus_value_model.png ( https://comun.ourproject.org/en/w/index.php?title=File:Simple_surplus_value_model.png ). This solves the problem, sort of, but is obviously too labourious to be used as a general method.
I have set the permissions of the /images/ directory itself to be maximally permissive:
drwsrwsrwx
So I don't think the new subdirectories are just inheriting restrictive permissions from the parent directory, /images/ .
The permissions of the root directory of the wiki ( htdocs/en/w/ ) are:
drwxrwsr-x
So I don't think they're inheriting restrictive permissions from there, either.
Where do the new subdirectories get their permissions from?
How can I get the permissions to be set properly when a file is uploaded?
-- ~~~~