PHPSUEXEC and attack issues...

**jozeph** · 09-29-2005 03:21 PM

Hi,

I came across myself with a problem...
Using phpsuexec disabled, know problems is visible, as users reading other owned php files, etc. But, you can disabled resource as not allow users to change safe_mode even using php_admin_value or php_flag.

With phpsuexec enable, many this permissions problems is solved, but others appear! :/

With phpsuexec and a php.ini on directory of php file you can disable safe_mode again and read /etc/passwd files for example.

I want to you how I can enable permanently safe_mode and how I can use SUEXEC and PHPSUEXEC with CHROOT, using jailshell for example. So I will do not have hack issues on machine.

**DigiCrime** · 10-02-2005 11:12 PM

Originally Posted by jozeph

Hi,

I came across myself with a problem...
Using phpsuexec disabled, know problems is visible, as users reading other owned php files, etc. But, you can disabled resource as not allow users to change safe_mode even using php_admin_value or php_flag.

With phpsuexec enable, many this permissions problems is solved, but others appear! :/

With phpsuexec and a php.ini on directory of php file you can disable safe_mode again and read /etc/passwd files for example.

I want to you how I can enable permanently safe_mode and how I can use SUEXEC and PHPSUEXEC with CHROOT, using jailshell for example. So I will do not have hack issues on machine.

Can you tell me how you can disable phpsuexec? Far as I know it cant be disabled by a user

LinkBack

Thread Tools

PHPSUEXEC and attack issues...

PHPsuEXEC issues with WHM 10.8.0 cPanel 10.8.2-S120

phpsuexec issues

Attack, help me please.

High load issues causing regular performance issues

phpsuexec issues