[BlueOnyx:17853] Re: open_basedir
Michael Stauber
mstauber at blueonyx.it
Fri Jun 19 16:31:01 -05 2015
Hi Steffan,
> I have a client using 5106
> he wants to disable open_basedir completely from his server but after every
> update the settings are set back.
> Is there a way to disable this ?
BlueOnyx does not (and will not) support disabling open_basedir entirely
for security reasons.
Recommendation: Tell the client that if he needs this feature he should
get his own server. Because that security setting threatens the data
integrity and privacy of other clients on the server.
If this is a client server and he therefore can only hurt himself, then
you can add :/ at the end of the open_basedir path of that Vsite. Which
will add the root folder and everything thereunder to the allowed paths.
Which gives the PHP scripts access to anything on the server that it can
access with the UID that it runs as. Which is kinda stupid.
No web accessible script needs or should have that kind of access.
--
With best regards
Michael Stauber
More information about the Blueonyx
mailing list