> I recently realized users are able to access my base document root using
> opendir() and readdir()... I find this to be a big security risk.. I am
> wondering if anyone knows of any ways to limit it so that the user can
only
> usephp on his level,and not be able to access any server files. I hope
that
> makes sense, heh.. If you need more info,say say..
You pretty much just described open_basedir:
http://php.net/manual/en/features.safe-mode.php#features.safe-mode
--
WARNING [EMAIL PROTECTED] address is an endangered species -- Use
[EMAIL PROTECTED]
Wanna help me out? Like Music? Buy a CD: http://l-i-e.com/artists.htm
Volunteer a little time: http://chatmusic.com/volunteer.htm
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
To contact the list administrators, e-mail: [EMAIL PROTECTED]
