On the Pressable platform, you have granular control over how your site’s files and directories can be accessed by PHP. This is a powerful security feature that can help protect your site. This guide explains what these permissions mean and how to use them.
What Are PHP Filesystem Permissions?
In simple terms, filesystem permissions determine who or what is allowed to read, write, or modify the files that make up your WordPress site. This includes your themes, plugins, and media uploads.
By controlling PHP’s ability to write to these files, you can add an extra layer of security to your site, making it more difficult for unauthorized code or users to make changes.
At Pressable, WordPress core files are symlinked to each site from a secure location outside the sitesβ web root directory. These files are automatically read-only.
Locating the PHP FS Permissions Settings
You can find this feature within your site’s Pressable Control Panel.
- Navigate to your site’s dashboard.
- Click on the Advanced tab in the left-hand menu.
- Select the PHP Filesystem (FS) Permission sub-menu.
Available Permission Levels
You can choose from three distinct levels of permissions, each suited for different scenarios.
| Setting | Description | Best For |
| Read/Write (Default) | Allows PHP processes to both read and write files on your site. | This is the standard operational mode. It’s required for most day-to-day activities, including installing/updating themes and plugins, and uploading media. |
| Read Only | Prevents PHP processes from writing to or modifying any files. PHP can only read the files. | Hardening security or during a site cleanup. If you are not making any changes to the site, this mode can protect it from web-based exploits that try to modify files.Β Note: Your site may not function as expected, and you won’t be able to perform updates. |
| Only When Logged in to WordPress | A hybrid setting that only allows PHP to write files when an administrator is logged into the WordPress admin dashboard (/wp-admin). | An excellent balance between security and convenience. It keeps the site locked down from public-facing scripts but allows administrators to easily perform updates and manage the site when logged in. |
How to Change Your Permission Setting
- From the PHP Filesystem (FS) Permission screen, select your desired option from the dropdown menu.
- Click the Update PHP FS Permission button to apply the change.
The change will take effect almost immediately.
Frequently Asked Questions
Q: I can’t update my plugins or themes. What’s wrong?
A: The most common reason for this is that your filesystem permissions are set to Read Only. For updates to work, you must set the permissions to Read/Write or be logged into your WordPress admin if you are using the Only When Logged in setting.
Q: What is the most secure setting?
A: Read Only is technically the most secure as it completely prevents changes. However, it also limits functionality. For a strong balance of security and usability, the Only When Logged in to WordPress setting is highly recommended.
Q: Can I leave my site in Read Only mode permanently?
A: While you can, it is not recommended for most sites. Doing so will prevent you from performing crucial security and feature updates for your themes and plugins, and may cause issues with plugins that require writing to the file system (e.g., image optimization plugins that create new versions of your uploaded images, security plugins that need to write log files, backup plugins).