Hi. I have an Apache server that supports php 4. This server is public for uploading as downloading. I would like to know if it's possible to chroot (or something else) a user to his home directory so he will not be able to use his php privileges in order to get files from the general root "/". Example: <?php include $_GET[f]; ?> And the query string is: www.mydomain.com/file.php?f=/etc/pass It will be better if I could lock him to his home directory by a general rule, so even if he'll try to get into the root "/" by FTP, he will be failed. Regards, Yoav Orot. -- redhat-list mailing list unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe https://www.redhat.com/mailman/listinfo/redhat-list
