Hi! > I agree many people do not like PHP safe_mode as way to make server secure > but some interesting option (for example safe_mode_exec_dir where I stored > 3 or 4 binary useful command and not others) are available only with > safe_mode = On
Well, you could add all your webusers to a group "noexec", change ownership of /bin, /usr/bin... to group noexec and set mode to 705. Allowed binaries can be hardlinked to /webbin. Please note that you also have to store php-cgi in /webbin because otherwise suphp will not be able to execute it. Your Mail-Issue may be solved by using PEAR's Mail-Package with SMTP-backend. Greets, ROland
signature.asc
Description: This is a digitally signed message part.
_______________________________________________ suPHP mailing list suPHP@lists.marsching.biz http://lists.marsching.biz/mailman/listinfo/suphp
