1 |
On Fri, 04 May 2007 10:07:33 +0200 |
2 |
Michael <mycroes@××××××.nl> wrote: |
3 |
|
4 |
> Customers will have write access with PHP, at least in some part |
5 |
> of /var/www. So there it's more than just /var/tmp in my case, however |
6 |
> they shouldn't be able to create any suid files anyway. |
7 |
|
8 |
There's no reason why you cannot configure your web server to use a |
9 |
different part of the filesystem as a root directory. |
10 |
|
11 |
Something like /home/www might be more appropriate. |
12 |
|
13 |
--atj |
14 |
-- |
15 |
gentoo-hardened@g.o mailing list |