View Single Post
  #2  
Old 3rd March 2011, 11:06
Dark_Balor Dark_Balor is offline
Junior Member
 
Join Date: Feb 2011
Posts: 4
Thanks: 0
Thanked 2 Times in 2 Posts
Default

It's not a security hole

just look at your php-cgi wrapper the open-base-dir:
Quote:
"/var/www/clients/client1/web1/web:/var/www/clients/client1/web1/tmp:/var/www/clients/client1/web1/backup:/var/www/friendlyphotozone.com/web:/srv/www/friendlyphotozone.com/web:/usr/share/php5:/tmp:/usr/share/phpmyadmin:/etc/phpmyadmin:/var/lib/phpmyadmin"
(took from your other topic)

Without allowing to acces /usr/share/phpmyadmin, www.friendlyphotozone.com/phpmyadmin/ will not work correctly.

If you ask why www.friendlyphotozone.com/phpmyadmin/ work by default, just look at the file :
Code:
/etc/apache2/conf.d/phpmyadmin.conf
If you want to change the alias
Code:
Alias /phpmyadmin /usr/share/phpmyadmin
by
Code:
Alias /what-ever-you-want /usr/share/phpmyadmin
and do
Code:
/etc/init.d/apache2 reload
of course to do that you must be root or have root privilege.
Reply With Quote