Hi,
I've read some about safe mode being removed from PHP6 and the PHP manual as well says, safe mode is a poor solution for restricting PHP-access to other files. But I can't find anywhere it says what to do in alternatively?
How do I prevent PHP reading all the files on my server?
How do I prevent the users on my shared host reading each others files?
Can anybody give me a hint?
/Asger
what to do without safe_mode
Moderator: General Moderators
-
asgerhallas
- Forum Commoner
- Posts: 80
- Joined: Tue Mar 14, 2006 11:11 am
- Location: Århus, Denmark
-
asgerhallas
- Forum Commoner
- Posts: 80
- Joined: Tue Mar 14, 2006 11:11 am
- Location: Århus, Denmark
-
d3ad1ysp0rk
- Forum Donator
- Posts: 1661
- Joined: Mon Oct 20, 2003 8:31 pm
- Location: Maine, USA
I'm no sysadmin, but from the issues I've dealt with at our work, it seems the best option would be:
- Map out your entire FS.
- List users that will be on your server (root, apache, site1user, etc)
- Link users with parts of the filesystem to show who NEEDS access to what (also, what access they need (read/write/execute))
From there, go ahead and setup all the permissions.
- Map out your entire FS.
- List users that will be on your server (root, apache, site1user, etc)
- Link users with parts of the filesystem to show who NEEDS access to what (also, what access they need (read/write/execute))
From there, go ahead and setup all the permissions.