The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Need help with Open_basedir for suphp

Discussion in 'Security' started by zigzam, Dec 27, 2009.

  1. zigzam

    zigzam Well-Known Member

    Joined:
    May 9, 2005
    Messages:
    206
    Likes Received:
    0
    Trophy Points:
    16
    I have enabled open_basedir in the php.ini file (suphp setup).

    I want to exclude the /home/username/ directory for all accounts. I know where to exclude it, but dont know how to write the username so it changes for each account (ex. /home/user1 and /home/user2)


    Thanks
     
  2. thewebhostingdi

    thewebhostingdi Well-Known Member

    Joined:
    Jan 10, 2008
    Messages:
    141
    Likes Received:
    0
    Trophy Points:
    16
    you should try this

    WHM --> Security --> Security Center --> PHP open_basedir Tweak

    this function can help you enable/disable open_basedir and choose which user exclude protection.
     
  3. zigzam

    zigzam Well-Known Member

    Joined:
    May 9, 2005
    Messages:
    206
    Likes Received:
    0
    Trophy Points:
    16
    That does not work with suphp
     
  4. santrix

    santrix Well-Known Member

    Joined:
    Nov 30, 2008
    Messages:
    223
    Likes Received:
    2
    Trophy Points:
    18
    Sorry to bump, I'm also interested in knowing how to implement open_basedir with suPHP
     
  5. WebHostDog

    WebHostDog Well-Known Member

    Joined:
    Sep 3, 2006
    Messages:
    144
    Likes Received:
    0
    Trophy Points:
    16
    cPanel Access Level:
    Website Owner
    The way that suPHP works I think you do not need open_basedir at all.
     
  6. speckados

    speckados Well-Known Member

    Joined:
    May 21, 2003
    Messages:
    291
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Acequias :: Granada :: España
    cPanel Access Level:
    DataCenter Provider
    Twitter:
    All people think taht SuPHP it's a panacea for hacking.... If your app has a bug for trasnversal directory or injection code, and put a shell, your invite has control for see all system.

    See it's not read, but... see can to be dangerous.

    SuPHP+ openbasedir, it's best solution.
     
Loading...

Share This Page