Re: [BUGTRAQ] php breaks safe mode

From: Sander Steffann (steffannat_private)
Date: Fri Jul 06 2001 - 01:25:13 PDT

Next message: Steffen Dettmer: "Re: [BUGTRAQ] php breaks safe mode"

Previous message: Adrian Chadd: "Re: Tunnel ports allowed on NetApp NetCaches"
In reply to: Steffen Dettmer: "Re: [BUGTRAQ] php breaks safe mode"
Next in thread: Krzysztof Dabrowski: "Re: [BUGTRAQ] php breaks safe mode"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi,

> Usually the Webserver is able to read the sources of the PHP
> scripts. PHP scripts may include passwords for database access.
> Since PHP is usually mod_php and not suexec'd, this seems to be a
> common problem. With account to such databases really important
> damage could be done!

It's possible to protect yourself against this. PHP has an so-called
open_basedir restriction, with which you can specify the directories that a
script is allowed to access. You can set a different restriction for every
VirtualHost.

Sander.

Next message: Steffen Dettmer: "Re: [BUGTRAQ] php breaks safe mode"
Previous message: Adrian Chadd: "Re: Tunnel ports allowed on NetApp NetCaches"
In reply to: Steffen Dettmer: "Re: [BUGTRAQ] php breaks safe mode"
Next in thread: Krzysztof Dabrowski: "Re: [BUGTRAQ] php breaks safe mode"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Jul 06 2001 - 12:06:30 PDT