Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

include PHP script from under the user directory

Discussion in 'Security' started by LampedWeb, Jul 14, 2009.

  1. LampedWeb

    LampedWeb Member

    Joined:
    May 28, 2009
    Messages:
    24
    Likes Received:
    0
    Trophy Points:
    51
    Location:
    England
    cPanel Access Level:
    Root Administrator
    I want

    /home/someapi
    /home/useraccount

    include('/home/someapi/somescript.php');

    or

    include('somescript.php');

    usable from all accounts while keeping basic security so that users can't access files inside other users directories.

    If it helps, I own the VPS.

    Any ideas?
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #1 LampedWeb, Jul 14, 2009
  2. Spiral

    Spiral BANNED

    Joined:
    Jun 24, 2005
    Messages:
    2,023
    Likes Received:
    8
    Trophy Points:
    193
    That's not an issue if you run PHP as SuPHP!

    If you run PHP as DSO (Apache Module) then you have php_openbasedir
    available to you which is designed specifically to help with that and you
    just need to go in and enable that from the "Security Center" menu in WHM!
     
    #2 Spiral, Jul 15, 2009
  3. LampedWeb

    LampedWeb Member

    Joined:
    May 28, 2009
    Messages:
    24
    Likes Received:
    0
    Trophy Points:
    51
    Location:
    England
    cPanel Access Level:
    Root Administrator
    What I've done:

    Gone into the PHP config screen and set open_basedir to "/home/mai_api/" (without quotes),

    Gone into the security center, "Tweak PHP open_basedir Security" and enabled it (oops, that should have been enabled already...),

    Put a test.php in /home/mai_api/test.php and tried calling it from a user account. It still says "open_basedir restriction in effect. File(/home/mai_api/test.php) is not within the allowed path"
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #3 LampedWeb, Jul 15, 2009
  4. LampedWeb

    LampedWeb Member

    Joined:
    May 28, 2009
    Messages:
    24
    Likes Received:
    0
    Trophy Points:
    51
    Location:
    England
    cPanel Access Level:
    Root Administrator
    Just double-checked EasyApache, and I don't have mod SuPHP compiled in. Should I rebuild with that?
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #4 LampedWeb, Jul 15, 2009
  5. david510

    david510 Well-Known Member

    Joined:
    Aug 22, 2004
    Messages:
    473
    Likes Received:
    0
    Trophy Points:
    166
    Since the error us popping up, open_basedir protection is there. Add the path to the VH section in the httpd.conf file for the corresponding domain.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #5 david510, Jul 15, 2009
(You must log in or sign up to post here.)
Loading...
Similar Threads - include script under
  1. durangod

    Include the cloudflare plugin in cPanel Install?

    durangod, Oct 16, 2018 at 11:38 PM, in forum: Security
    Replies:
    2
    Views:
    45
    durangod
    Oct 17, 2018 at 8:02 PM
  2. afatah

    Include directories for deployment in cpanel.yml?

    afatah, Sep 28, 2018, in forum: General Discussion
    Replies:
    2
    Views:
    85
    afatah
    Oct 1, 2018
  3. Matthew Utzig

    How do I include a php file on a different cpanel account?

    Matthew Utzig, Sep 19, 2018, in forum: cPanel Developers
    Replies:
    1
    Views:
    71
    cPanelMichael
    Sep 19, 2018
  4. Stallonmabro

    Add Code to httpd.conf with Include?

    Stallonmabro, Sep 10, 2018, in forum: EasyApache
    Replies:
    1
    Views:
    101
    cPanelMichael
    Sep 11, 2018
  5. akamaras

    SOLVED [CPANEL-21026] Include cPanel 70 as LTS version in WHM >> Update Preferences

    akamaras, Jun 15, 2018, in forum: General Discussion
    Replies:
    9
    Views:
    263
    cPanelMichael
    Jun 27, 2018

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...
    Dismiss Notice