5

WEBSERVER user access to MAIL folder

view full story
linux-howto

http://forums.cpanel.net – Hi guys, cPanel have a major security risk regarding how php handler is configure: DSO or suPHP. As DSO configuration the risk is the hacker can access to the webserver folder of all users, because the PHP is executed with nobody permissions for all accounts. As suPHP the webserver is execute with the user account permissions, so it can access to mail folder. I think the best way is the suPHP configuration, but the webserver must use a second user of the account. One user have access to all files in home folder and the second user have access only to the webserver folder. The webserver ha (HowTos)

funckax's picture
Submitted by funckax on 10/24/2012 – Made popular on 10/24/2012

Stories similar to WEBSERVER user access to MAIL folder

Hi,

I use Fed18 as webserver and in order to transfer file easily between development computer (windows 7) and webserver (fed18) i setup a samba folder sharing to /var/www/html/

for now, webserver is able to access to share folders via browsing network, however windows 7 client is not able.

as my windows 7 user doesn't have a user account on server, he's mapped with an existing one in sam

I've got a webserver which hosts a website. The website is located in /home/website.

Securing iis 8 nt permissions 19 weeks 6 days ago

I have an win2012/IIS 8 webserver which I am trying to secure.

I have one Linux LAMP webserver (Ubuntu) with some websites on it.

They all run within the same apache2 instance and are accessible by different vhosts.

Most of them are run by myself, but I also have some friends websites hosted there.

I want and use to have separate user accounts for different websites to manage files, cronjobs etc.

The webserver runs as www-data.

Now most of the files/dire

I always gave to the webserver user full permissions on these dirs:

cache/ logs/ web/uploads/

But now I am wondering if the uploads part is 0K. I was thinking that maybe it would be better if I use a .tmp file for each upload, and then put them in a queue to be moved to uploads/, and do the same for deletions (the queue will be read and validated by a different user).

Webserver VPN? 24 weeks 2 days ago

I want to run a webserver on a PC that doesn't have direct access to the internet.Incoming traffic is blocked.

So I want to run the webserver and other people can access it. Is it possible to use a VPN and the IP address that the VPN allocates me to be accessible form outside the vpn,displaying my webpage?

If such a service exists could you recommend one ?

Thanks!

proftpd user creation 50 weeks 2 days ago

Setting up an proFTPd server so i can upload files to my webserver. But never tried this before, ive installed proftpd, added a user with a home folder: "/home/FTP-shared" And added /bin/false shell to it as well..

But what do i do configuration wise now in proftp to be able to login with this user, and up and download, delete and so on?? And my idea was to symlink to apache www folder from the f

I have a machine running Ubuntu 12.04 LTS with OpenSSH server installed. I have created a user with a jailed home account.

When I log in with the user's account, I can only access his home (duh).

In addition to the user's home folder, I would like to give the him read access to a particular partition (/Volumes/Storage). How can I do this?

Thanks.

M0s..

I'm currently setting up my own Linux server running CentOs 6. To test the security on my server I wrote a PHP script that acts like a sort of "navigator". I can go one directory up, open the files, etc. etc.

The problem is, my tools allows me to go up till "/" and I am not very happy with this.