php being run as nobody

my php scripts runs as user nobody (i've seen a lot of discussion around php_suexec, and many ppl say it's not a good option)

if a user make a script to run "rm -rf /" will all sites be deleted (since php has access to them)?

php_basedir prevents this?

thanks

 

 

 

 

Top