Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [open-basedir]

27 questions
7
votes
3 answers

how to add an open_basedir path in nginx vhost

In php.ini I've set open_basedir = /home/user/web/ Now I would like to run phppgadmin on a subdomain which needs to include files from /usr/share/phppgadmin. So I added the following line to the nginx-config for this host: fastcgi_param PHP_VALUE…
32bitfloat
  • 253
  • 2
  • 3
  • 9
3
votes
1 answer

Why is PHP open_basedir not considered a security model

On servers doing shared web hosting, or sharing the PHP environment between different PHP applications, I usually implement a security policy that uses PHP open_basedir to restrict each user to his/her own directory (along with other PHP directives…
Læti
  • 2,075
  • 21
  • 33
3
votes
1 answer

Can php-fpm support open_basedir set dynamically for multiple virtual hosts with a single user pool?

I am running into a problem where trying to set open_basedir dynamically under nginx (and apache) for php-fpm is "bleeding through" to other vhosts when running php-fpm as user "nobody" (for legacy reasons). using fastcgi_param PHP_ADMIN_VALUE…
ck_
  • 429
  • 7
  • 19
3
votes
1 answer

MediaWiki "open_basedir restriction in effect"

I installed a local MediaWiki and gave it access to the following directories in php.ini: open_basedir = /srv/http/:/home/:/tmp/:/usr/share/pear/:/usr/share/webapps/mediawiki Why do I still get the following message? It doesn't make sense to…
Konrad Höffner
  • 195
  • 1
  • 9
2
votes
1 answer

Should I add `/dev/urandom` into PHP `open_basedir`?

My system is centos 7.4,with Apache 2.4.6 and PHP 5.4. I have following setting in /etc/php.ini open_basedir =.:/tmp/:/var/lib/php/session/ session.save_path = "/var/lib/php/session" session.entropy_length = 0 ;session.entropy_file = /dev/urandom I…
kittygirl
  • 855
  • 4
  • 10
  • 29
2
votes
1 answer

NGINX and PHP FPM - general setup and performance issues using open_basedir

I want to configure an NGINX server, which is able to host multiple websites, which are seperated from each other, so vhosta can't access files from vhostb. I installed a fresh Debian 7.5 server and installed NGINX and PHP FPM from the default…
derhansen
  • 123
  • 6
2
votes
0 answers

Jail PHP to OpenBasedir or Document Root Debian

I have a VServer running with Debian Squeeze Debian Squeeze / Apache2 / FastCGI / MySQL / Froxlor. The administration of Customers, Domains and FTP Accounts are performed using Froxlor. Following problem: If I install an application like Roundcube…
Rubberducker
  • 121
  • 3
2
votes
1 answer

open_basedir problems with APC and Symfony2

I'm currently setting up a shared staging environment for one of our applications, written in PHP5.3 and using the Symfony2 framework. If I only host a single instance of the application per server, everything works as it should. However, if I then…
Steve Hill
  • 141
  • 4
2
votes
2 answers

PHP Safe Mode/open_basedir - lstat performance problem

PHP lstat the full path many times before read the file is looking for. And this happens when in apache httpd configuration is specified PHP_ADMIN_VALUE open_basedir setting or if safe_mode is ON. If I have a simple website with only phpinfo.php…
freedev
  • 313
  • 5
  • 17
1
vote
1 answer

open_basedir in reverse… kind of…

We have several vhosts that all include files from another vhost so in the httpd.conf we have added php_admin_value open_basedir "..........:/home/commonfi" I was wondering whether I could add something to the commonfi vhost setup to allow any site…
icelizard
  • 732
  • 3
  • 9
  • 20
1
vote
1 answer

open_basedir restriction on phpMyAdmin

I'm trying to reinstall my server and have run into a new problem that I can't seem to figure out. I'm running a LAMP setup and host a few sites for my friends, for that I have open_basedir set in their Apache conf files but that suddenly affect…
Zlug
  • 111
  • 3
1
vote
0 answers

Use apache upload_tmp_dir for pear applications

Is it possible to use upload_tmp_dir parameter defined in the apache configuration for using in PEAR applications? The real problem appears because of System.php file of PEAR use /tmp directory, but apache has open_basedir restrictions, that doesn't…
Aleksander A
  • 101
  • 1
  • 4
1
vote
2 answers

Does open_basedir works recursive?

Does open_basedir works recursive? For example if I write in php.ini something like: open_basedir=/client3/web3/web Does it include all directories in /client3/web3/web (/client3/web3/web/1, /client3/web3/web/2, )?
B14D3
  • 5,110
  • 13
  • 58
  • 82
1
vote
1 answer

How do i set a open_basedir with php using fastcgi/apache2 on linux?

I tried to add this line to my virtual hosts in Apache, but failed: php_admin_value open_basedir "/var/www/users/test" My installation: root# apt-get install apache2 apache2-suexec libapache2-mod-fcgid php5-cgi Any ideas? Something I noticed in…
centurian
  • 401
  • 3
  • 7
1
vote
1 answer

php.ini use multiple include paths - openbasedir restriction

I need to allow an include path for a vhost subdomain on Plesk 10. I've edited the PHP PEAR path into /etc/php.ini as I'm happy for it to be globally available: include_path = ".:/usr/share/pear/" This works insofar as PHP is able to see the files…
MrFidge
  • 321
  • 3
  • 5
  • 15
1
2