Re: Apache Virtual Hosts Chroot ?
Paul Hampson wrote:
>
> You can effectively chroot php files with:
> php_admin_value open_basedir /directory/where/files/are
> in the Apache virtual host config. Then:
> a) php4 won't let files outside that directory be accessed;
No:
- Hard links
- Commands executed with "system" can access files outside this
directory
- you can also access files in /directory/where/files/are2 or is this
bug already solved?
There are probably other possibilities to access files outside this
directory.
open_basedir has nothing to do with chroot, they are two different
things.
Regards,
Ralf Dreibrodt
--
Mesos Telefon 49 221 4855798-1
Eupener Str. 150 Fax 49 221 4855798-9
50933 Koeln Mail rd@mesos.de
Reply to: