Hello everyone
We would like on occasion to use custom php settings for some our clients but most of the time we want to make sure they are forced to use the settings from the main php.ini file
We currently have the following issue:
Is there any way to either:
We use FastCGI so setting anything in .htaccess or custom php.ini files in public_html is prevented (which we want).
We have already tried to create a wrapper for CGI using:
[ -f ~/php.ini ] && exec /usr/bin/php -c ~/
exec /usr/bin/php
This makes it possible for us to create php.ini files in every users /home directory but this does little to correct the issue since the user has full access to edit the files. The only solution we have so far come across has to make the files immutable.
We look very much forward to getting some input
We would like on occasion to use custom php settings for some our clients but most of the time we want to make sure they are forced to use the settings from the main php.ini file
We currently have the following issue:
- This can be accomplished by using .user.ini files but these files give us the opportunity to edit any php setting we like - we consider this a security threat.
- We have tried to create .user.ini files as root and set restriction to 0444 but the user can access the file from "File Manager" without any problems and edit the file
Is there any way to either:
- Block users from having access to /home so that they only have access to /home/public_html?
- Make the file only editable by root?
We use FastCGI so setting anything in .htaccess or custom php.ini files in public_html is prevented (which we want).
We have already tried to create a wrapper for CGI using:
[ -f ~/php.ini ] && exec /usr/bin/php -c ~/
exec /usr/bin/php
This makes it possible for us to create php.ini files in every users /home directory but this does little to correct the issue since the user has full access to edit the files. The only solution we have so far come across has to make the files immutable.
We look very much forward to getting some input
