Join GitHub today
GitHub is home to over 28 million developers working together to host and review code, manage projects, and build software together.Sign up
Feature request: apache mod_chroot #545
Implement apache mod_chroot usage.
Current problem, when using mpm_itk is that, although every apache process will run as its owner when virtualhost config states:
mod_chroot itself resolves problem that user is able to view system files by jailing apache master process.
Also, user folders must be created as 750, currently they are created as 755
This setup will result that users are able to view all folders in /var/customer/webs, but they cannot look into folders, and folder /var/customer/webs looks to them as root folder (/)
Yes, i do, and i see what you are saying.
File manager i used:
Indeed, when i try to access upper folder, php file manager gives me:
But, if i use "shell" in that particular file manager, i can do:
I have another web server instance which uses mpm_itk with mod_chroot (no froxlor), and there, same file manager is unable to "see" folder listings (in froxlor case this would be folders with usernames), but it cannot go up because of mod_chroot.