Restrict PHP access to root folders?
Question
Im making sort of a service where people can upload PHP files and they get their own directory.
Is there a way to prevent any way the PHP can access the root of the server? and just stay in the bounderies of its folder?
Solution
The open_basedir
directive does just that :
Limit the files that can be opened by PHP to the specified directory-tree, including the file itself.
OTHER TIPS
The most secure would be to chroot Apache and PHP.
Licensed under: CC-BY-SA with attribution
Not affiliated with StackOverflow