| 1 |
On Fri, 04 May 2007 10:07:33 +0200 |
| 2 |
Michael <mycroes@××××××.nl> wrote: |
| 3 |
|
| 4 |
> Customers will have write access with PHP, at least in some part |
| 5 |
> of /var/www. So there it's more than just /var/tmp in my case, however |
| 6 |
> they shouldn't be able to create any suid files anyway. |
| 7 |
|
| 8 |
There's no reason why you cannot configure your web server to use a |
| 9 |
different part of the filesystem as a root directory. |
| 10 |
|
| 11 |
Something like /home/www might be more appropriate. |
| 12 |
|
| 13 |
--atj |
| 14 |
-- |
| 15 |
gentoo-hardened@g.o mailing list |
Archives