annualhost

Member
Nov 22, 2002
24
0
151
There is a lot of back and forth about certain security procedures, what I am trying to find out is, what's the bottom line...

I have suexec and php in safe mode, should I have openbasedir = ~ if so, where does it go?

Is that better than safe mode?

Can safe mode be disabled for some sites while being turned on globaly accross the box?

I used to have an Ensim server, in that environment users were jailed to their directory they could browse beyond those confines, how can that be acheived with cPanel?

I also noticed that by default anyone can browse to a folder without an index file and see the whole tree...

I know there is something that can be set that will give an error message instead of the directroy tree, but what that is I don't know.

I would appreciate any assistance that can be given ...

Nathan
 

dgbaker

Well-Known Member
PartnerNOC
Sep 20, 2002
2,576
9
343
Toronto, Ontario Canada
cPanel Access Level
DataCenter Provider
For the directory access error,

Follow ITF's example from http://forums.cpanel.net/read.php?TID=5837

He suggests using the following

create an .htaccess file and append this line to it:

Options -indexes

If you put this in /home it will effect all subdiretories.