Jump to content


Photo

Accessing upper directory...


  • Please log in to reply
1 reply to this topic

#1 dev99

dev99
  • New Members
  • Pip
  • Newbie
  • 5 posts

Posted 14 April 2006 - 01:09 AM

After install php and apache on a debian server i found out that people who upload files under /var/www/users/username

username is the users foldername... can access upper directory.. so they can see and edit files everywhere on the system...
How can i prevent this? only way i found was to change open_basedir = . under php.ini but that also blocks from installation of many php scripts...
Thanks

#2 dev99

dev99
  • New Members
  • Pip
  • Newbie
  • 5 posts

Posted 05 May 2006 - 02:37 PM

Can anyone help me with this? It's been so long...




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users