i have my own box for my forum .. now i shared my box with friend's , but in reall they a freak friend's , just to be in safe brother, am looking to know what function i can disable in php.ini or any problem/tool to prevent anybody / attacker * nobody* permission to move in the server via his shell script..
as we know some attacker's use them own php-shell to hack site's * shared hosting *, so they can move to any account after they know the user account name * /etc/passwd * .. so as i say before is there any good functions to prevent these attacker to move in the server ? so i can disable it .. or install any good tool * else modsecurity * in the system to prevent them *nobody* of that ??
mmmmmmm thanks in advice guys, but let me tell u that the server is fresh .. so i can change the sys as i can make a chroot/jail for user/ssh Account ? is that a good idea .. chroot/jail account with sushosin ?
and please folks could u explane how to play in php.ini so if you could share your's php.ini ?
Well you can chroot/jail users as addionational security measurement. (Yes its a good idea)
You can use the forum's search function or google with "hardened php.ini" files. But u must understand that any file you will see might be not for you to use. They could be hardened/limited so much maybe it would be not usefull for you. So look for the optimal hardened php.ini files..
You can add as much security as you want but as you add more security, you increase the chance of inteferring with your scripts. Hardening php.ini, modsecurity, etc., are all great for security but we see many common scripts that don't work with all of this. So be careful and do them one at a time, so if there is a problem, you can isolate which one is blocking it.
PlatinumServerManagement (also known as PSM)
The OLDEST and LARGEST and MOST TRUSTED server management provider in the USA, with 15+ employees and growing! Providing quality support for OVER 18 years! Currently supporting over 3,000+ servers monthly! www.PlatinumServerManagement.com Proud member of the NJ BBB & Chamber of Commerce & Authorized cPanel Partner.