On 2007.02.21 22:18:15 +0100, Momchil Ivanov wrote:
> > But is there any way to disbale related php functions? is there any well
> > defined configuration examples for mod_php?
>
> Is this what you are looking for:
> http://www.php.net/manual/en/features.safe-mode.php
You should not rely on PHP
Momchil Ivanov wrote:
[...]
- Web users and executed web scripts shouldn't be able to read other
users data
Solution:
run suPHP for php scripts as well as suEXEC for cgi-scripts
implement ufs_acl so that the www (Web Server) user can access any
user directory
Add a u
На 21.2.2007 19:31 Nikolay Pavlov пише:
> On Wednesday, 21 February 2007 at 13:14:21 +0300, Stanislav Sedov wrote:
> > On Sun, 18 Feb 2007 14:53:58 +0100
> >
> > Alexis Susset <[EMAIL PROTECTED]> mentioned:
> > > Hi all,
> > >
> > > I am looking at securing a web server using the FreeBSD MAC Framew
On Wednesday, 21 February 2007 at 13:14:21 +0300, Stanislav Sedov wrote:
> On Sun, 18 Feb 2007 14:53:58 +0100
> Alexis Susset <[EMAIL PROTECTED]> mentioned:
>
> > Hi all,
> >
> > I am looking at securing a web server using the FreeBSD MAC Framework.
> >
> > To make things clear I will call the hos
On Sun, 18 Feb 2007 14:53:58 +0100
Alexis Susset <[EMAIL PROTECTED]> mentioned:
> Hi all,
>
> I am looking at securing a web server using the FreeBSD MAC Framework.
>
> To make things clear I will call the hosted users "web users". Those
> are the issues I am dealing with:
>
> ** Network Security
Hi all,
I am looking at securing a web server using the FreeBSD MAC Framework.
To make things clear I will call the hosted users "web users". Those
are the issues I am dealing with:
** Network Security **
- Web users shouldn't be able to connect to reserved local ports
apart from 25(smtp);
Hi all,
I am looking at securing a web server using the FreeBSD MAC Framework.
To make things clear I will call the hosted users "web users". Those are the
issues I am dealing with:
** Network Security **
- Web users shouldn't be able to connect to reserved local ports apart from
25(smtp); 80(
