SuExec and VirtualHosts
Posted: 18. October 2010 11:37
Hi there.
My goal is to set up a virtualhost for a user and that he doesnt have read-access outside his home-dir when using PHP.
It looks lika suexec is enabled in apache already so I did the following:
1. Created a user called "test".
2. Made it impossible for him to read something outside his home dir in /etc/passwd (with /bin/rbash)
3. Added the following to etc/extra/httpd-vhosts.conf:
<VirtualHost *:80>
ServerName test.mydomain.com
SuexecUserGroup test test
DocumentRoot /home/test
</VirtualHost>
4. Reloaded: /opt/lampp/lampp reloadapache
He can still se everything on the server. Why?
Thank you in advance!
My goal is to set up a virtualhost for a user and that he doesnt have read-access outside his home-dir when using PHP.
It looks lika suexec is enabled in apache already so I did the following:
1. Created a user called "test".
2. Made it impossible for him to read something outside his home dir in /etc/passwd (with /bin/rbash)
3. Added the following to etc/extra/httpd-vhosts.conf:
<VirtualHost *:80>
ServerName test.mydomain.com
SuexecUserGroup test test
DocumentRoot /home/test
</VirtualHost>
4. Reloaded: /opt/lampp/lampp reloadapache
He can still se everything on the server. Why?
Thank you in advance!