Safe mod off security

NameSniper · #1 11-19-2006, 04:26 PM

I was wondering what can make a server or at least the domain level security better in case a php script has an exploit,will turning safe mod on help to secure the rest of the server if someone hack that script ?

Someone said that php scripts are different from cgi ones and that if someone manage to exploit the php script he can do anything he want with the privileges of the apache user and that safe mod on will help in this case,is it true ?

Steven · #2 11-19-2006, 04:29 PM

Safemode on will provide better security then safe mode off.

ServerNinja · #3 11-19-2006, 04:32 PM

Turning on safe mod is not a professional way to approach problems. It can cause a lot of security issues to the server.

NameSniper · #4 11-19-2006, 04:43 PM

Steven i meant safe mod on and misstyped it with off..

Linuxcares then what is more professional way to secure the server if you are unsare whether your script has an exploit ?

ServerNinja · #5 11-19-2006, 05:20 PM

Using open_basedir with apache, using disable_functions etc. are some of the methods to secure. See http://in2.php.net/features.safe-mode for more informations.

NameSniper · #6 11-20-2006, 06:43 PM

Thanks linuxcares

ServerNinja · #7 11-20-2006, 08:24 PM

You are welcome

Safe mod off security

Sponsored Links

Advertise Here

Internet Services

Web Development

Digital Marketing

Consumer Tech