[BlueOnyx:01577] Re: how to allow php to modify files in other virtual sites than the current
Florian Arzberger
arzberger at maxxnet.de
Fri Jul 3 03:41:19 -05 2009
> -----Ursprüngliche Nachricht-----
> Von: blueonyx-bounces at blueonyx.it [mailto:blueonyx-bounces at blueonyx.it]
> Im Auftrag von Michael Stauber
> Gesendet: Freitag, 3. Juli 2009 08:19
> An: BlueOnyx General Mailing List
> Betreff: [BlueOnyx:01575] Re: how to allow php to modify files in other
> virtual sites than the current
>
> Adding "/home" (or "/home/") to "open basedir" is no longer supported
> in
> BlueOnyx due to security concerns.
>
> The reason is: It pretty much invalidates the entire open basedir
> restrictions
> if scripts of siteX can access all content of any other sites.
>
> The only way around it (at the moment and for the time being) is to
> manually
> edit /etc/httpd/conf/vhosts/siteX and to adjust the open_basedir line
> in
> there. But of course changing the web settings for that site through
> the GUI
> may then overwrite your changes.
>
i understand that and am aware of the risks, but i still want/need to do it
on customer request (it's not a shared server). so you are saying it is not
possible to generally disable open_basedir? what would i have to do to
achieve this? compile my own php version?
More information about the Blueonyx
mailing list