Re: Apache + PHP and user permissions

To: StarK <stark@dioxygen.net>
Cc: debian-security@lists.debian.org
Subject: Re: Apache + PHP and user permissions
From: Ralf Dreibrodt <rd@mesos.de>
Date: Tue, 23 Jul 2002 15:31:20 +0200
Message-id: <[🔎] 3D3D5AA8.1BE8C44B@mesos.de>
References: <[🔎] 20020723132522.GA21262@patator.abris13.org>

Hi,

StarK wrote:
> 
> What kind of security can I use to avoid this ? Can we chroot the PHP
> (Yes I know it's a strange sentence :) ?

i know two useable solutions:

1. care about every service:

use SuEXEC for CGIs, Safe Mode for PHP, a good directory and right
structure.

2. chroot everything
just chroot the users at the login after ssh (if you want to allow ssh),
chroot apache (that means every user must have one apache-process), chroot
ftp (what you have already done).

bye
Ralf

-- 
To UNSUBSCRIBE, email to debian-security-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to:

Follow-Ups:
- Re: [d-security] Re: Apache + PHP and user permissions
  - From: Christian Hammers <ch@westend.com>
- Re: Apache + PHP and user permissions
  - From: Sebastian Schinzel <soidberg@web.de>

References:
- Apache + PHP and user permissions
  - From: StarK <stark@dioxygen.net>

Prev by Date: Apache + PHP and user permissions
Next by Date: Re: [d-security] Re: Apache + PHP and user permissions
Previous by thread: Apache + PHP and user permissions
Next by thread: Re: [d-security] Re: Apache + PHP and user permissions
Index(es):
- Date
- Thread