NGiNX サーバーでクライアントに使用する共有ホスティング サーバーを作成する予定です。誰かが私が始めるのを助けるための指針を持っているかどうか、私はさまよっていました. また、他のアカウントをハッキングできないように、さまざまなアカウントを保護するにはどうすればよいですか?
1 に答える
2
The issue has less to do with nginx and more to do with your shell permissions and backend scripts.
Will your users have ssh access? If so, you will definitely want to setup chroot jails for them to prevent them from executing scripts or modifying files outside of their own directory.
Similarly, chroot jails will affect scripts (i.e. PHP files) from having access to files outside of the user's own directory.
You cannot use nginx to prevent scripts from modifying files not belonging to the user, but if I understand you correctly, you should be able to accomplish this via jailshells.
If you are working solely with PHP, you might also be able to use the open_basedir directive.
于 2011-11-16T20:59:03.360 に答える