Benjamin Blazke wrote: > Hello, > > is there a possibility to limit mod_perl users in the > same way as the PHP 'open_basedir' option does? > > Quoting from the PHP manual: > --- > open_basedir - Limit the files that can be opened by > PHP to the specified directory-tree. > > When a script tries to open a file with, for example, > fopen or gzopen, the location of the file is checked. > When the file is outside the specified directory-tree, > PHP will refuse to open it. All symbolic links are > resolved, so it's not possible to avoid this > restriction with a symlink. > ---
patching the open() implementation :) You can override CORE::GLOBAL::open, but users can still use directly CORE::open. But seriously, this won't work in Perl. Your only solution is to use a chroot jail: http://perl.apache.org/release/docs/general/multiuser.html#ISPs_providing_mod_perl_services___a_fantasy_or_a_reality chroot/jail links here: http://perl.apache.org/release/docs/offsite/other.html#Apache __________________________________________________________________ Stas Bekman JAm_pH ------> Just Another mod_perl Hacker http://stason.org/ mod_perl Guide ---> http://perl.apache.org mailto:[EMAIL PROTECTED] http://use.perl.org http://apacheweek.com http://modperlbook.org http://apache.org http://ticketmaster.com