Staying secure without safe_mode?

[JohnD@]

I´ve always onfigured safe_mode as on with all webhosting servers. Now, I will start using SWSOFT´s Sitebuilder along with PLESK 8.2 which requires safe_mode to be set to off.

Question is, what are the alternatives to safemode to keep the server from beeing hacked. Using Scott´s ASL as well, but I do not think that it compensates fully for safe_mode?

Any suggestiongs would be welcome. Thanks.

 

[breun]

PHP safe_mode is certainly not the be all and end all of security. I advise you to enable safe_mode globally (in /etc/php.ini) and disable it only for domains that run software that cannot function under safe_mode.