My goal is to set up a virtualhost for a user and that he doesnt have read-access outside his home-dir when using PHP.
It looks lika suexec is enabled in apache already so I did the following:
1. Created a user called "test".
2. Made it impossible for him to read something outside his home dir in /etc/passwd (with /bin/rbash)
3. Added the following to etc/extra/httpd-vhosts.conf:
SuexecUserGroup test test
4. Reloaded: /opt/lampp/lampp reloadapache
He can still se everything on the server. Why?
Thank you in advance!