Hosting

spyro187 · 11-26-2005, 11:58 PM

Does anyone know of a good way to lock down sub directories for hosting. I am working on a server to let some people host their tech sites and I don't want their php code to be able to transverse into other directories unless into is under their own. Ex. www.whatever.com/user1. They will have php available and I would like then to also have a mysql db that is lockdown. Anyone have some ideas on how to secure this kind of configuration?

rehash · 11-28-2005, 04:54 PM

"The PHP safe mode is an attempt to solve the shared-server security problem. It is architecturally incorrect to try to solve this problem at the PHP level, but since the alternatives at the web server and OS levels aren't very realistic, many people, especially ISP's, use safe mode for now."

have you tried?

spyro187 · 11-28-2005, 09:48 PM

Yes I have php setup in safe mode. The problem I have is that all users that sign up fall under the apache user. I could set them up as another user but then they will be able to move to other users folder and not my main /var/www/html folder.

Any other ideas?

Member Login