Results 1 to 2 of 2
  1. #1

    * Restrict user to it's own directory on suphp.

    I am trying to restrict user to it's own home directory. You are able to see all files on server without open_basedir restriction and with open_basedir restriction, we can only achive limiting user to /home folder but not their user folder, therefore, they can still see user account listing with simple php shell. Anyway to fix this?

    Server is running CENTOS 5.6 x86_64 with suphp and suexec enabled.
    suphp was installed via cPanel EasyApache
    Last edited by screatch; 06-04-2011 at 08:34 AM.

  2. #2
    Join Date
    Jun 2006
    Location
    Europe
    Posts
    632
    suphp can only read files which have read permissions of user, group and/or global.

    files with permissions of "-rw-r--r-- username username" are readable by all users, since it have global read set.
    files with permissions of "-rw-r----- username username" are readable only by "username/username".

    therefore, you need to have permissions for files or dirs without global read set, if you dont want everyone to see them.

    also you must know that apache runs as "nobody" so you need global read, or group "nobody" read on files/dirs that apache needs to access.
    Last edited by xtrac568; 06-04-2011 at 01:52 PM.

Similar Threads

  1. restrict users to access a specific directory
    By angathan in forum Dedicated Server
    Replies: 3
    Last Post: 12-22-2010, 01:13 PM
  2. How to restrict directory access
    By 3-rx in forum Hosting Security and Technology
    Replies: 2
    Last Post: 05-29-2009, 01:32 AM
  3. How to password protect or restrict a directory on PC?
    By Mark226 in forum Web Hosting Lounge
    Replies: 8
    Last Post: 07-15-2004, 02:27 PM
  4. how to restrict ftp user to a directory?
    By WebUser in forum Hosting Security and Technology
    Replies: 7
    Last Post: 08-13-2003, 07:42 PM
  5. Restrict access for ftp user?
    By keyDet79 in forum Hosting Security and Technology
    Replies: 3
    Last Post: 04-20-2003, 05:44 AM

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •