Willing to show my ignorance here. In an effort to make a new box more secure, one of the recommended steps is to use suPHP so folders don't need dangerous world writable permissions set to be able to write to them. OK, 777 won't let a script run within, though you can still set that permission level. However, a script in a folder with lesser permissions will run, and with suPHP, it can be written into any folder, as long as the script being exploited (let's say WP in this case) can be made to write there. No matter how many places I read up on it, they all claim it's safer, but don't really explain why scripts able to upload and run in any folder is any safer than just on certain folders with world writable access. Kind of counter intuitive. Can anyone explain the reasons why that's safer?