Results 1 to 5 of 5
  1. #1
    Join Date
    Mar 2004
    Posts
    78

    Safemode, Suexec, Php suexec and open base dir. Whats necessary?

    I was running safemode, open base, suexec..

    Then I thought php suexec would be even safer. So I made the changes..

    Does php suexec replace safemode?

    I would leave the 4 options on.. but now my phpSYSinfo neat script wont work anymore.

    My old way was just putting in a tag in httpd to turn off phpsafemode for just that stat directory / url.


    Now with php suexec.. it wont work.. unless I turn off php safe mode globally.

  2. #2
    Join Date
    Mar 2004
    Posts
    78
    Any one...?

  3. #3
    Join Date
    Jul 2003
    Location
    Nothing but, net
    Posts
    2,062
    Basically if phpSysInfo works completely it means your system is insecure.

    The script relies on accessing certain pieces of information that it shouldn't be able to in order to display some information.

    Sorry but, thats just the way it works.

  4. #4
    phpsuexec doesn't allow scripts to run in 777 mode. Try to kick down the problem script to 755 or lower and check it out

  5. #5
    Join Date
    May 2002
    Location
    Kingston, Ontario
    Posts
    1,573
    Ughhh phpsuexec is to restrictive I find for a shared hosting environment. Some scripts need safe mode off and if you have phpsuexec enabled you can't do that.

    open_base is very important, it prevents linking outside a users home directory.
    Upload Guardian 2 - Malicious Upload Scanner - Windows and Linux!
    Instantly scan uploaded files
    Get notified when released

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •