Results 1 to 4 of 4
  1. #1
    Join Date
    Apr 2005
    Location
    HCMC
    Posts
    82

    how can custom php.ini ?

    Hello,

    I'm using CentOS 5, Cpanel/WHM with php as cgi, when i try to put a php.ini file to to custom php for one account and it overwrite main setting on our server, someone use this bug to run c99 and try local attack other account, i've try fix this problem by edit /opt/suphp/etc/suphp.conf and set phprc_paths to /usr/local/lib/. But when i do this, php.ini in my custom account doesnt work any more... How can i custom php for one account and it not effect to main setting to prevent local attack ?

    P/S: I've tried with mod_security and help prevent prevent alot of, but not all. Sorry my english not good
    Last edited by VIETHOSTING; 05-18-2008 at 04:23 PM.
    VIETHOSTING.VN - Dịch vụ Hosting, Tên miền, Email Hosting, Cloud VPS, Máy chủ tại Việt Nam

  2. #2
    Join Date
    Feb 2007
    Posts
    325

  3. #3
    Join Date
    Apr 2005
    Location
    HCMC
    Posts
    82
    thanks, but it seems didnt help for my problem...

  4. #4
    Join Date
    Sep 2000
    Location
    Alberta, Canada
    Posts
    3,109
    In the custom 'php.ini' file add the following.

    register_globals = Off
    disable_functions = shell_exec,system,proc_open


    If you need to really get heavy-handed, add any/all of the folowing.

    disable_functions = shell_exec,system,proc_open, exec, shell, passthru


    Of course, you will need to monitor the account itself to see what the above settings do to it.
    PotentProducts.com - for all your Hosting needs
    Helping people Host, Create and Maintain their Web Site
    ServerAdmin Services also available

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •