make the storage permissions tweakable for hosted environments where they may require tweaking.

boot.php

@@ -90,6 +90,21 @@ define ( 'LANGUAGE_DETECT_MIN_LENGTH',     128 );
 define ( 'LANGUAGE_DETECT_MIN_CONFIDENCE', 0.01 );
 
 
+/**
+ * Default permissions for file-based storage (webDAV, etc.)
+ * These files will be owned by the webserver who will need write
+ * access to the "storage" folder.
+ * Ideally you should make this 700, however some hosted platforms
+ * may not let you change ownership of this directory so we're
+ * defaulting to both owner-write and group-write privilege.
+ * This should work for most cases without modification.
+ * Over-ride this in your .htconfig.php if you need something
+ * either more or less restrictive.
+ */
+ 
+define ( 'STORAGE_DEFAULT_PERMISSIONS',   0770 );
+
+
 /**
  *
  * An alternate way of limiting picture upload sizes. Specify the maximum pixel

include/attach.php

@@ -532,7 +532,7 @@ function attach_mkdir($channel,$observer_hash,$arr = null) {
 
 	$basepath = 'store/' . $channel['channel_address'];
 	if(! is_dir($basepath))
-		@mkdir($basepath,0700,true);
+		@mkdir($basepath,STORAGE_DEFAULT_PERMISSIONS,true);
 
 
 	if(! perm_is_allowed($channel_id, get_observer_hash(),'write_storage')) {
@@ -619,7 +619,7 @@ function attach_mkdir($channel,$observer_hash,$arr = null) {
 	);
 
 	if($r) {
-		if(mkdir($path,0700)) {
+		if(mkdir($path,STORAGE_DEFAULT_PERMISSIONS)) {
 			$ret['success'] = true;
 			$ret['data'] = $arr;
 		}