from the home folder, ran: chmod go-rw domain.org -R. this causes the entire website to return 403 forbidden errors. chmod go-rw *.php -R -v shows that it's not going through subfolders.
let me clarify the concern here, because this may not even be necessary. i created a new shell account for development help, and the person I made it for noticed he can cd ../myusername and view the contents of my .php files, including sql passwords, etc.
this got me worrying, is this only because his shell account was created under my dreamhost account, or can any dreamhost user get access to contents of my .php files? in 4 years with dreamhost i've never had any problems as far as i know, but i would prefer that some bored/curious dreamhost user doesn't cd ../myaccount, cat index.php and get my sql password, and drop 4 years of sql tables.
What do you mean by "RL"? Hang on, lemme check wikipedia...