| 1 |
Hi, |
| 2 |
|
| 3 |
I guess that this has been asking so I just ask for a reference to the a |
| 4 |
thread where mi question is answer because I can't find it. |
| 5 |
|
| 6 |
In this scenario: |
| 7 |
|
| 8 |
One webserver that sets Apache User and Group per VirtualHost, with many |
| 9 |
of these, and each one in a different htdocs of course. |
| 10 |
|
| 11 |
If VirtualHost A has some php files with an access mask like 777 (common |
| 12 |
in hostings) and VirtualHost B 'guess' the VH A full dir it can trough |
| 13 |
fopen or many other ways open these file. |
| 14 |
|
| 15 |
How can I stop users from do that? |
| 16 |
|
| 17 |
Thanks, |
| 18 |
Angel |
Archives