Facebook
TwitterIf you are planning to use the SiteBuilder application for creating web sites, additional packages needs to be installed. One of these packages is:
php-xslt-1.0-0.i386.rpm
Please note that after installing the php-xslt rpm, the uid/gid of the /etc and /usr directory becomes apache:apache. I can reproduce this by simply installing the php-xslt rpm provided by plesk.
If someone is able to abuse a script on your server (i.e. phpBB), they (apache) have access /etc/ and /usr directory. Not good!!!
Gijsbert Rochat
[email protected]
Sitebytes BV
www.sitebytes.nl
php-xslt-1.0-0.i386.rpm
Please note that after installing the php-xslt rpm, the uid/gid of the /etc and /usr directory becomes apache:apache. I can reproduce this by simply installing the php-xslt rpm provided by plesk.
If someone is able to abuse a script on your server (i.e. phpBB), they (apache) have access /etc/ and /usr directory. Not good!!!
Gijsbert Rochat
[email protected]
Sitebytes BV
www.sitebytes.nl
