Securing by installing OpenBaseDir, SafeMode, SuExec, PHPSuEXEC
I have been searching google for the past hour and half trying to get a feel for these but I don't know what it is I need.
open base dir
safe mode
suexec
phpsuexec
I want to secure my server up AS MUCH AS POSSIBLE, this is a private server, only myself and one other friend have access to it.
we have 300+ sites on there, and no real "scripts" a side a topsite.
I would like to make it so you CANNOT UPLOAD or MODIFY or even browse the contents of php files from a php remoteview, and restrict from ANYTHING being uploaded or changed.
I have ONE site that is accessed by all 300 sites, so this site's php files needs to be able to be readable by ALL sites on the SERVER as well as be able to have the files accessed by the browser like all other sites.
Should I install open base dir, safe mode, suexec, and php suexec?
They do NOT need to be able to include files from other locations, but if ANYONE knows a function like include() that can include a file from a REMOTE location but ALREADY parsed, then that would be really helpful.
I have a site that uses frames to "include" a webpage, it currently includes a html webpage, but if someone changed that page, and made it .txt (which they can) and it included, it would parse on my server and I do not want parsing of remote files on in my server, they could easily use phpremoteview or something to take advantage.
Should I assign USER or GROUPS to these sites or what can I do?
Thanks in advance!
