Contributed by jose on from the protect-yourself-and-your-server dept.
(Comments are closed)
OpenBSD Journal
Contributed by jose on from the protect-yourself-and-your-server dept.
(Comments are closed)
Copyright © - Daniel Hartmeier. All rights reserved. Articles and comments are copyright their respective authors, submission implies license to publish on this web site. Contents of the archive prior to as well as images and HTML templates were copied from the fabulous original deadly.org with Jose's and Jim's kind permission. This journal runs as CGI with httpd(8) on OpenBSD, the source code is BSD licensed. undeadly \Un*dead"ly\, a. Not subject to death; immortal. [Obs.]
By Anonymous Coward () on
Regards
Pontus
Comments
By toxic () on
Comments
By toxic () on
safe_mode = On
By Anonymous Coward () on
for example, in each vhost definition, i enter
php_admin_value open_basedir "/home/userhome:/www/userweb"
i also set a few other things ... i turn on safe mode, set safe_mode_exec_dir, and doc_root
Comments
By mdr () on
Comments
By mkc () mat@phpconsulting.com on http://www.phpconsulting.com
By Lennie () leen@wirehub.nl on mailto:leen@wirehub.nl
http://home.wirehub.nl/~leen/apache/
Because if the webserver process has the uid/gid of the user, no more worries... no more nobody/www-data crap.
After all the ftp-server changes the uid/gui, why not something as important as the webserver...?