Posted by Jennifer Goodie on 02/09/05 05:34

-------------- Original message ----------------------
From: Niels <zorglub_olsen@hotmail.com>
> Jennifer Goodie wrote:
>
> > I wouldn't use system calls to move files around. PHP has built in file
> > system functions. Why shell out to do something that is built in?
>
> Well, the apache user really shouldn't have access to the entire file system
> -- that's the problem.

Should web applications have access to areas on the file system that the apache user doesn't? I personally only allow my web applications access to certain areas on purpose and set my permissions to accomplish this. If I need to be a user other than nobody to do something I don't want my web applications doing it. Of course, I work in an environment where I have root access to dedicated servers and a sysadmin that listens to what I want, so your experience may be different. I admittedly do not have a lot of experience getting around the problems caused by shared hosting.

[Back to original message]