the problem is the php 4.4.4 version is vuln. specially this serious vuln. of symlink() function to bypass openbase dir and read files and the only update is by upgrading the php version
A vulnerability has been identified in PHP, which could be exploited by local attackers to bypass security restrictions. This flaw is due to a race condition between the time that "open_basedir" access controls for a symbolic link are verified and the time the requested file is accessed by certain functions, which could be exploited by malicious users to gain unauthorized access to restricted files via a PHP script containing "symlink()", "mkdir()", "unlink()", and "fopen()" calls.
so any other suggestions ?