Not possible to run PHP in a multiuser and secure way
Bug #312493 reported by
Yann Hamon
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| php5 (Ubuntu) |
Fix Released
|
Wishlist
|
Unassigned | ||
Bug Description
As I started to describe here: https:/
There is no way (as I am aware of) to run two websites (website A and website B) where website B wouldn't be put at risk if website A is hacked, and where you could setup permissions where users with system access could change website A but not website B and vice versa.
There used to be php's safe mode, which is just an ugly way to circumvent the problem, and that seems to have been removed in PHP6.
Revision history for this message
| Chuck Short (zulcss) wrote | #1 |
| Changed in php5: | |
| importance: | Undecided → Wishlist |
Revision history for this message
| Chuck Short (zulcss) wrote | #2 |
| Changed in php5 (Ubuntu): | |
| status: | New → Triaged |
Revision history for this message
| Ondřej Surý (ondrej) wrote | #3 |
Revision history for this message
| Yann Hamon (yannh) wrote | #4 |
Revision history for this message
| Randy Syring (rsyring) wrote | #5 |
Revision history for this message
| Jakob Unterwurzacher (jakobunt) wrote | #6 |
Revision history for this message
| Randy Syring (rsyring) wrote | #7 |
Revision history for this message
| Ondřej Surý (ondrej) wrote | #8 |
Revision history for this message
| Ondřej Surý (ondrej) wrote | #9 |
| Changed in php5 (Ubuntu): | |
| status: | Triaged → Fix Committed |
Revision history for this message
| Robie Basak (racb) wrote | #10 |
| Changed in php5 (Ubuntu): | |
| status: | Fix Committed → Fix Released |
To post a comment you must log in.
Thanks for the bug report.