Stefano Cislaghi wrote:
If you are searching for a way of securing CGI scripts, I suggest you have a look to our work on Sbox. Here are the links:Any suggestions about running php4 in cgi mode with a per-vhost different user? Thanks Stefano
http://www.gplhost.com/software-sboxdtc.html http://stein.cshl.org/WWW/software/sbox/There's a debian package available in my repository, and I did the FreeBSD port that is currently in /usr/ports/www/sbox-dtc. This cgi-wrapper will do chroot and ulimit() calls for you.
I hope that helps. Thomas