Discussions of secure PHP coding. Security in software is important, so don't be afraid to ask. And when answering: be anal. Nitpick. No security vulnerability is too small.
I'm running apache+php on a freebsd server...
My domains work with virtual host, so every domain gets send to a directory.
Everything works fine but...
I would like it if a php-file in a certain directory has only access to that directory and no place else!
So I want to secure some directories so that php-files can only reach other files or functions in that directory and subdirectories but no directory higher...
Does anyone knows how to do this?
I've already been trying with .htaccess but that didn't work.
I really like it and it runs very smooth!!
But now I want to go further...
Isn't it possible to have mysqldatabase containing all de directories that have to be secure with php?
Anyone who knows a module for this?