1 |
Hi, |
2 |
|
3 |
I guess that this has been asking so I just ask for a reference to the a |
4 |
thread where mi question is answer because I can't find it. |
5 |
|
6 |
In this scenario: |
7 |
|
8 |
One webserver that sets Apache User and Group per VirtualHost, with many |
9 |
of these, and each one in a different htdocs of course. |
10 |
|
11 |
If VirtualHost A has some php files with an access mask like 777 (common |
12 |
in hostings) and VirtualHost B 'guess' the VH A full dir it can trough |
13 |
fopen or many other ways open these file. |
14 |
|
15 |
How can I stop users from do that? |
16 |
|
17 |
Thanks, |
18 |
Angel |