Re: [PHP] restricting filesystem access

I'd like to restrict php code to access the filesystem. I'd like to have
only one directory where the php code can write, create or read files,
and an other directory hierarchy where the php codes present. I need
this to avoid php code to rewrite other php code in case of bug and/or
an attack.

I already tried the open_basedir directive, but it couldn't work because
in this case the executed php have to be in the accessable directory
hierarchy.

Thanks,
Gabor


it depends, if you run your own server (you have root password). then you
can do something
about this. but if you run on shared server, i don't think you have a lot of
options.
if you afraid the php code to rewrite other code (rare case). just chmod all
the php files
to 644.

Relevant Pages

  • Re: [PHP] restricting filesystem access
    ... I'd like to restrict php code to access the filesystem. ... and an other directory hierarchy where the php codes present. ... PHP runs as the Apache user. ... chown/chmod the source files to not be writable by that user. ...
    (php.general)
  • restricting filesystem access
    ... I am a new php user and I have a question, for which I couldn't find any ... I'd like to restrict php code to access the filesystem. ... and an other directory hierarchy where the php codes present. ...
    (php.general)
  • Re: [PHP] restricting filesystem access
    ... I am running my site on a shared server, but I can overwrite the options ... php is still able to write anything. ... only one directory where the php code can write, create or read files, ... if you afraid the php code to rewrite other code. ...
    (php.general)