On Sunday 25 November 2001 04:08 pm, Ali Pakkan wrote:
> And consider they are real users, then how will i tell Apache server to
> run as the user owning the file?
Using the PHP module, you can't. Using PHP as a CGI, you can use something
like cgiwrap to execute under the user's account
> Is
I should explain a bit more in detail.. Actually, the users can have php
files. And these php files can access other users' stuff.
And consider they are real users, then how will i tell Apache server to
run as the user owning the file?
Is it impossible for a real solution?
On Sun, 25 Nov 20
> I want to keep their information on Mysql. That is,
> if possible I don't want to create real system accounts.
>
> The problem is... using PHP, they can open any file
> that is readable to nobody account (Apache user)..
> So it can read and even edit other users' files..
>
These two statemen
On Sunday 25 November 2001 03:30 pm, you wrote:
> The problem is... using PHP, they can open any file
> that is readable to nobody account (Apache user)..
> So it can read and even edit other users' files..
>
> Consquently, the users should be able to access only and only their home
> directories.
4 matches
Mail list logo
