Re: Apache+PHP+ftp security

From: Eduardo Tongson (propolice_at_gmail.com)
Date: 03/28/05

Previous message: abend: "Apache+PHP+ftp security"
In reply to: abend: "Apache+PHP+ftp security"
Next in thread: Shawn Parker: "Re: Apache+PHP+ftp security"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Tue, 29 Mar 2005 00:27:17 +0800
To: focus-linux@securityfocus.com

On Fri, 25 Mar 2005 19:54:44 +0100, abend <roy@clusterdigital.com> wrote:
> In order to solve my problem, my questions are:
> - Can i run apache's child processes with an arbitrary user
> (configured in a VirtualHost basis)? This solve the second problem,
> but is this a good idea?

With your requirements I dont see it being a problem.
I think you should also check out suExec with FastCGI(mod_fastcgi) for
php serving

> - Does anyone know how to do the first configuration works as
> expected? This solves the problem (safe_mode not needed).
> - any other ideas?

Have the upload directory be sgid www-data

-- 
                                                    Eduardo Tongson     
                                                    <pornadmin.net/~tongson>
                                                    <dragonflybsd.sf.net>

Next message: grep: "Re: OpenVPN?"

Previous message: abend: "Apache+PHP+ftp security"
In reply to: abend: "Apache+PHP+ftp security"
Next in thread: Shawn Parker: "Re: Apache+PHP+ftp security"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]