httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Artiom Morozov <art...@phreaker.net>
Subject Re: Limit a user's CGI in his/her directory
Date Mon, 18 Mar 2002 14:34:16 GMT
you will probably need to use chroot'ing functionality in any CGI 
wrapper, e.g. cgiwrap.

ξΑ 2002.03.18 17:22 Richard ΞΑΠΙΣΑΜ:
> I am trying to work out how to limit a user's CGI
> in a directory.
> 
> I have apache 1.3.23 on my FreeBSD4.4 machine. I
> created a few virtual hosts. To improve the security,
> I want to limit the users's CGI only in his/her
> directory, which means he/she can not open a file
> out of his/her directory. I've done this in PHP
> with php_admin_value open_basedir 'directory',
> But I am wondering how to implement in CGI.
> I saw some webhosting companies are like this,
> which are using apache as well, so I am pretty
> sure this is possible.
> 
> Also, is it possible disallow user to use system()
> function in CGI?
> 
> Anyone who can help me will be very appreciated.
> 

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message