Secure Coding mailing list archives
Re: Something about virtual servers and php
From: jnf <jnf () datakill org>
Date: Fri, 02 Apr 2004 16:54:17 +0100
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 I just thought I'd add to the thread quite simply that you can use suexec with php, but it requires a little screwing around- mainly that the php scripts must be in a script aliased directory and start with a line like #!/path/to/php , I also found in a brief google a short wrapper that could be used (security unknown, i didnt look into it that much) so that the use of suexec was transparent to the end user. I found all this through the magic of google with the query 'suexec for php', between that and jail/chroot/whatever you should be able to accomplish what you want. Although honestly, if you have the hardware, a user-mode linux/vmware type solution would be desirably also, and you could give the end user root on their own little virtual box, charge more, and in the end be more secure- but that wasnt really within the parameters of what you wanted. j -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.2 (OpenBSD) iD8DBQFAbIXJsKAeTAhLiCERAj07AJ9tOrek9lwVeo06/RzrzJHiE11n2wCeKVP3 RSOzV5dn5KUmOVyG1EjCslk= =Hhva -----END PGP SIGNATURE-----
Current thread:
- Re: Something about virtual servers and php jnf (Apr 02)