Hi,erverone i want to do a hosting business,and it is contain centos 5.5 ,php , nginx ,mysql ,proftpd erver use contain a document like /home/htdocs/mike ,and he only use ftp and see that document only and php and mysql is shared for all user is it ok to my design,anyone have good advice for me? and import is: how to make a safe php hosting??please give me some advice -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.centos.org/pipermail/centos/attachments/20110304/d3c76568/attachment-0002.html>
Google for php and security. Kai
On Thu, Mar 3, 2011 at 12:38 PM, Yang Yang <dapiyang at gmail.com> wrote:> Hi,erverone > > i want to do a hosting business,and it is contain centos 5.5 ,php , nginx > ,mysql ,proftpd > > erver use contain a document like /home/htdocs/mike ,and he only use ftp and > see that document onlyAs long as you're using FTP, you're dead in the water in security terms. FTP sends passwords in clear text and always yas. Switch to FTPS, WebDAV over HTTPS, or upgrade to OpenSSH 5.x and use SFTP with chroot cages.