Mailing List Archive
tlug.jp
Mailing List
tlug archive
tlug Mailing List Archive
|
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [tlug] Prevent access shared server using PHP
- Date: Wed, 2 Mar 2011 12:00:16 +0100
- From: Francois Cartegnie <fcartegnie@example.com>
- Subject: Re: [tlug] Prevent access shared server using PHP
- References: <4D6D0A40.5000208@example.com>
- User-agent: KMail/1.13.3 (Linux/2.6.37-1mdvtmbcustom; KDE/4.4.3; x86_64; ; )
Le mardi 1 mars 2011, vous avez écrit : > My concern is about PHP. It's easy to restrict users access to certain > folders by a good group/permission policy and also ssh-jail them but > Apache will be the final user of those PHP scripts and Apache user > doesn't have the same restrictions as a limited user. It can browse > whatever is browsable for a common generic user. Apache suexec, PHP as fastcgi and 2 users for each account (1 with write access through ftp/ssh, 1 for the fcgi process/apache suexec with read only access) Francois
- References:
- [tlug] Prevent access shared server using PHP
- From: Pietro Zuco
- [tlug] Prevent access shared server using PHP
- Prev by Date: Re: [tlug] Prevent access shared server using PHP
- Next by Date: [tlug] [announcement] 2011-03-13 Technical meeting.
- Previous by thread: Re: [tlug] Prevent access shared server using PHP
- Next by thread: [tlug] [announcement] 2011-03-13 Technical meeting.
- Index(es):
| Home Page | Mailing List | Linux and Japan | TLUG Members | Links |