has anyone tried creating a chroot jail for apache so as to minimize potential damage those "hackers" who use phpshell/cgishell can do? (for the uninitiated those scripts give a shell-like interface and access to the entire file system afaik)
I mean if apache is jailed to /home and only the libraries it needs, then theoretically those nasty scripts couldn't be used to read the entire file system (apart from /home and whatever libs it needs) ..or have I got this wrong?
cPanel.net Support Ticket Number:
I mean if apache is jailed to /home and only the libraries it needs, then theoretically those nasty scripts couldn't be used to read the entire file system (apart from /home and whatever libs it needs) ..or have I got this wrong?
cPanel.net Support Ticket Number:
