Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
S
S
Sergey Petrov2016-03-23 15:57:20
PHP
Sergey Petrov, 2016-03-23 15:57:20

Differentiation of rights on the server within the same domain?

There is a site with the domain http://example.com, you need to add a blog to it with the address example.com/blog . How can you differentiate rights on the server so that when a blog is hacked (uploaded), an attacker cannot access the files of the main site?
How to configure Nginx so that work with the /blog subdirectory (in particular, php launch) is carried out as a different user (not the one under which the main site is running)?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

2 answer(s)
Report
S
sim3x, 2016-03-23
@sergoslav_0

two php-fpm from two users, and in nginx distribute everything according to their location

Report
D
DarkMatter, 2016-03-23
@darkmatter

You need to create a new FTP user and set /blog in the start directory, then he will not be able to get to the main site.

Similar questions
W
WAYNEDEV2020-02-19 22:06:01
How to organize mongoose + socket.io if calls to the database can be every second? 2Reply
O
Oscar Handsome2017-10-12 19:47:00
UMI.CMS layout / integration / XSLT problems with the menu, is there anyone to help? 1Reply
B
bulkmaker2017-10-23 12:25:53
How to make browsersync not reload admin? 3Reply
F
FuckingAwesome2020-03-12 19:47:24
Free good api's for music (python)? 3Reply
J
jugger12020-03-13 19:54:45
How to change the class of an element when clicking on another element using js? 2Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question