Peter Lovatt writes:
> I don't think there is a secure way of running php on a shared server.
If by 'shared' you mean that you have users, then there is a very
good way of doing it. Assuming that you use apache, have a look
at the suexec wrapper.
> I looked at ways of securing it but, fundamentally, php under apache runs
> the same user for everyone, so if anyone can read the config file, everyone
> can, if they know where it is.
Ouch. Are your users aware of this? If you use suexec you could tell
them to make sure that they chmod config files to 600. The only
disadvantage of using suexec with php, is that you'll have to run
php as cgi, which means that you'll need shebangs ('#!') in your
files and make them executable and stuff, but it's not that big a
deal usually. There are cases where you're better off with the
module, but security-wise suexec can be better.
//C
--
Carl Troein - Círdan / Istari-PixelMagic - UIN 16353280
[EMAIL PROTECTED] | http://pixelmagic.dyndns.org/~cirdan/
Amiga user since '89, and damned proud of it too.
---------------------------------------------------------------------
Before posting, please check:
http://www.mysql.com/manual.php (the manual)
http://lists.mysql.com/ (the list archive)
To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
