Chroot question

Discussion in 'Installation/Configuration' started by nolanpro, Feb 6, 2008.

  1. nolanpro

    nolanpro New Member

    Hi! I installed ispconfig via centos5 tutorial from scratch. Everything works perfectly but it doesn't look like users are jailed. When I create a user under a site in ispconfg, then log into the shell, they are able to view other accounts (they can read db passwords in other account's php files).

    php's realpath() shows /var/www/web12/web. Ideally this should show /htdocs/www or something similar that would be the same across all accounts.

    Thanks for your help!
  2. till

    till Super Moderator Staff Member ISPConfig Developer

    Users are not jailed if you did not enable it for every login type that shall be jailed as programs like ssh do not support this without patches.

    Which program do you use to login? FTP or SSH? For PHP you will have to enable safemode too.
  3. nolanpro

    nolanpro New Member

    Thanks, I'm more interested in making the file path the same for all users (of course, pointing to different files). For example, all users web files would appear to be in /htdocs/www to them but the actual path would be something like var/www/the_user_name/htdocs/www. I'm looking into two options now. suPHP and mod_chroot, or both. Anyway, hopefully one works.

Share This Page