OpaQue
Feb 24 2008, 09:29 AM
Faster and Secured Hosting.
ComputingHost will be activating open_basedir permissions on all its servers. Previously, we had it active on only a few select servers, however to make our hosting envoirment secure, We have now decided to activate it throughout our cluster.
Some of you might be wondering, What is open_basedir protection exactly?
Open_basedir limits the files that can be opened by PHP to the specified directory-tree, including the file itself. This directive is NOT affected by whether Safe Mode is turned On or Off.
If you try to open a file using your PHP program, you can open files only in PRESENT directory where your PHP program is OR sub-directories. So, suppose your php program is at :-
user1/www/mysite/myPhpProgram.php
You can open files and work with them using PHP in these locations:-
user1/www/mysite/ -> present folder
user1/www/mysite/subsite/ -> sub-folder
user1/www/mysite/subsite/subsubdir/ -> sub-sub-folder
You cannot open files in these locations :-
user1/www/ -> parent folder not allowed
/user2/www/HISsite/ -> other user folder not allowed, even if it has 777 permission --> [CASE-A]
Consider CASE-A.
With OpenBase_dir Protection ON:
You being the programmer are not allowed to VIEW "user2's" file. You are given an error in PHP saying, open_basedir protection enabled.
If you are user2 here with folder "HISsite" (permission 777), You get safe because someone could had accessed your FOLDER "HISsite" and tampered with its contents, created files, folders, modified your content etc.
With OpenBase_dir Protection OFF:
With Protection OFF, anyone can access ANY of your folders and files with permission 777. This permission is usually given to PHP config files, folders were user contents are uploaded by your program like "uploads", "cache" etc.
A simple fopen and fwrite function can be used to Inject Code or data into your files. And much more can be done to abuse this power.
When a script tries to open a file with, for example, fopen() or gzopen(), the location of the file is checked. When the file is outside the specified directory-tree, PHP will refuse to open it. All symbolic links are resolved, so it's not possible to avoid this restriction with a symlink. If the file doesn't exist then the symlink couldn't be resolved and the filename is compared to (a resolved) open_basedir .
The special value . indicates that the working directory of the script will be used as the base-directory. This is, however, a little dangerous as the working directory of the script can easily be changed with chdir().
What if my PHP files are already using/including files from parent folder?
Good Question. The answer is, They will fail.
You will have to upgrade your script to better versions.
But, open_basedir is not something new and all php developers know about it. So, the amount of programs failing should be very rare.
Still, I am one of those rare cases? Now what ??
Don't worry, Contact us at http://www.xistosupport.com.
Select the Right Dept. and Send us a support ticket.
We will take care of your situation. (applicable only to Paid Web Hosting Members only)
Okay, thanks Shree for explaining open_basedir, Now I know what open_basedir is,
so what is eAccelerator all about?
eAccelerator is a PHP accelerator derived from the MMCache extension for the PHP programming language. eAccelerator provides a bytecode cache and encoder. eAccelerator is open source and thereby free to use and distribute.
Every time a PHP script is accessed, PHP usually parses and compiles scripts to bytecode. Once installed, eAccelerator optimizes the compiled bytecode and caches this to shared memory or disk. Upon subsequent accesses to a script, eAccelerator will access cached bytecode if it is available instead of the script being compiled. This avoids the performance overhead of repeated parsing and compilation.
eAccelerator also provides functions for use in PHP scripts that allow access to shared memory, automatic web (content) caching, and other related tasks.
and... How does this eAccelerator affect me?
Simple, If you logon to your PHP forums/gallery or other application and say, "WHOA! That was FAST!". You can give the credits to eAccelerator! :-)
I hope, you appreciate and support our decisions. We thank you again for choosing ComputingHost as your hosting provider.:-)
Regards,
Shree
Xisto Corporation
NEWS ARTICLE: http://www.xistosupport.com/index.php?_m=n...p;group=default
Reply
Forbez
Feb 24 2008, 11:32 AM
Oooo, this looks very intresting. Good job guys, i'll be using this  .
Reply
Saint_Michael
Feb 24 2008, 08:57 PM
Although I don't have a computinghost account the open_basedir still a little confusing even after reading the FAQ, and so I try to break it down this way base on the info from the FAQ. Say if your using several scripts say like a counter, download script, and a gallery, I would have to put everything under one folder in order for everything to work instead of separate files? The next part that confuses me is the user folder and so I try to break it down this way. So basically if your doing mini hosting under your account the admin is literally locked out of those folders then? Or are the people outside the cpanel admin unable to log in and unable to get into the account without the password?
Reply
chrisranjana.com
Feb 25 2008, 07:04 AM
Kudos now hosting will be more secure using Open_basedir
Reply
OpaQue
Feb 25 2008, 08:17 PM
QUOTE(Saint_Michael @ Feb 25 2008, 02:27 AM)  Although I don't have a computinghost account the open_basedir still a little confusing even after reading the FAQ, and so I try to break it down this way base on the info from the FAQ. Say if your using several scripts say like a counter, download script, and a gallery, I would have to put everything under one folder in order for everything to work instead of separate files?
The next part that confuses me is the user folder and so I try to break it down this way. So basically if your doing mini hosting under your account the admin is literally locked out of those folders then? Or are the people outside the cpanel admin unable to log in and unable to get into the account without the password? I have updated the topic. I think I know where you got confused
Reply
jlhaslip
Feb 26 2008, 08:27 PM
Opaque, Thanks for continuing to provide a secure Hosting environment for us, and for continuing to provide the service. Great job. question about the eAccelerator... what sort of time does the Server cache the pages for? Can a re-load or CTL-reload of the Browser over-ride the cached version? The reason I ask is: I am adjusting some css files and they do not appear to be working properly. Just curious if perhaps the caching at the server might be the issue?
Reply
OpaQue
Feb 27 2008, 08:11 PM
QUOTE(jlhaslip @ Feb 27 2008, 01:57 AM) Opaque,
Thanks for continuing to provide a secure Hosting environment for us, and for continuing to provide the service.
Great job.
question about the eAccelerator... what sort of time does the Server cache the pages for? Can a re-load or CTL-reload of the Browser over-ride the cached version?
The reason I ask is: I am adjusting some css files and they do not appear to be working properly. Just curious if perhaps the caching at the server might be the issue? The caching happens server side and refresh will work perfectly. It will in no way affect CSS :-)
Reply
leiaah
Mar 5 2008, 07:15 AM
I'm experiencing open_basedir restrictions in qupis since yesterday and I can't view my site. Am I suppose to configure something or put additional codes in my pages? Sorry I'm kinda new to open_basedir.
Reply
Scream
Mar 5 2008, 10:11 AM
Okey, my site hasn't been working for few days already. I receive error Unknown: open_basedir restriction in effect. File(/home/ssscream/public_html/forum/index_.php) is not within the allowed path(s): (1) Why open_basedir is set to 1? QUOTE(http://ua2.php.net/features.safe-mode) open_basedir
Limit the files that can be opened by PHP to the specified directory-tree, including the file itself.
The restriction specified with open_basedir is actually a prefix, not a directory name. This means that "open_basedir = /dir/incl" also allows access to "/dir/include" and "/dir/incls" if they exist. When you want to restrict access to only the specified directory, end with a slash. For example: "open_basedir = /dir/incl/" As I understand, there should be a path to the allowed folder. So if I create file /home/ssscream/public_html/1/1/1/1/1/1/1/1.php ,it will work, all other files don't work. QUOTE(OpaQue @ Feb 24 2008, 09:37 AM) If you try to open a file using your PHP program, you can open files only in PRESENT directory where your PHP program is OR sub-directories. Tell me please which directory is PRESENT for me in the case of open_basedir = 1.
Reply
Carson
Mar 8 2008, 07:13 AM
I'm thinking about moving hosts now. My Site and my forum are integrated, so users can use both the site and forum with one account. With this restriction it's not possible anymore. I'm so disappointed, this is very important for my site. What am I going to do now...
Reply
Similar Topics
Keywords : open, basedir, e, accelerator, activated, faster, secured, hosting,
- Shared Hosting Account Server Update - Known Issues And Solutions
(33)
Credit System V2.0 Online
Free Web Hosting Credit System v2 now online! (13) Dear Members, I am pleased to announce that I have finished coding Credit System V2.0 and its now
online for members to use. Instead of the old URL used for managing your free web hosting account
(http://www.trap17.com/process), You shall now be using :- http://www.trap17.com/manage (Credit
System v2.0 Url) The new version is :- More secure. More reliable. Easily Upgradable and employs
Module system. Has a Much better look. Central Login. Ajax Powered. Has a Log System. Good
number of Bugs fixes Please use it and kindly report any further suggestions, comme....
Reason Why Accounts Got Mysteriously Suspended
Web Hosting accounts getting suspended mysteriously (14) Dear Members, Today, I found out the culprit who was suspending our free web hosting accounts :-)
It was no other than our OLD EPSILON server on which this forum was hosted. 10 days ago, we had
shifted this forum to a new server with a FASTER Board and processor. The old server had its CRON
service active and services were still running on it. The old EPSILON server never got any NEW POSTS
and hence, the credits did not increase. As a result, All members who got suspended on the old
server were suspended on GAMMA (our free hosting server). For security reasons, accoun....
Credit System Processing Cron Upgraded.
Free Web Hosting Manager Script (5) Dear Members, Yesterday, I fixed the credit system processing cron which took care of suspending /
unsuspending accounts. A wrote a new version of the script from scratch and its much much more
reliable :-) The issues about account being suspended and not getting un-suspended automatically
etx. will be no more. If you find anything strange or anything that needs my attention, Feel free to
send me a PM. Thank you for your continued support and patience :-) Sincerely, Shree Trap17.com....
Free Web Hosting With Ruby On Rails : Trap17.com
(16) QUOTE Ruby on Rails is an open source web application framework written in Ruby that closely
follows the Model View Controller (MVC) architecture. It strives for simplicity, allowing real-world
applications to be developed in less code than other frameworks and with a minimum of configuration.
One of Rails' guiding principles is "Don't Repeat Yourself". Ruby On Rails has been
installed. Members who are trying it for the first time are requested to first research on the
subject and then try experimenting /smile.gif" style="vertical-align:middle" emoid="....
Xisto Corporation Launches Vps Packages @ Computinghost!
Virtual Private Server : Cheap VPS Hosting by ComputingHost (11) ComputingHost is pleased to announce the launch of Virtual Private Server services.
Our Virtual private servers (VPS web hosting) are optimized to harness the complete power of our
servers. You can trust us with your Web Hosting business while we manage the servers round the
clock for you. Our VPS comes with better quality, Faster Customer service and Reliable servers
which you have been enjoying with ComputingHost. We also guarantee No Overselling tiny accounts
to fit in more VPS panels. Virtual private servers (VPS web hosting) are a m....
Default Hosting Package Plan Upgrade!
sweet mother of Jesus! (44) Announcing! For all Default Hosting Plan hosting members will see upgrades on their
hosting space size and bandwidth. Trap17 is very delighted to present to you 150 MB --> 500 MB
5 GB BW --> 10 GB bandwidth It is by our members that we're seeing this growth. Thanks to
all members of Trap17 for keeping our host to be the best on the web. Keep promoting Trap17 and
spread ComputingHost to the world. This plan will reflect as soon as servers are in low load. Thank
you. --Trap17, a member of xisto PS a huge thanks to OpaQue for making this poss....
Qupis : Free Hosting With Php, Mysql, Cpanel. (one Line Text Ad At Bottom)
a member of Xisto (40) Hello Members, We are proud to introduce a new member to Xisto group of sites.
Qupis : Free Web Hosting 150 MB space, 5000 MB Bandwidth, php,
mysql, CPanel (Latest). Emails, FTP, Addon domains, Parked Domains etc.
http://www.Qupis.com
Feel free to add your reviews and comments about it. -Trap17
Management ....
Hosting Approval And Activation Resumed
(6) *THIS DOES NOT EFFECT YOUR HOSTING DATABASE OR CURRENT HOSTING MEMBERS. ONLY FOR NEW ACTIVATING
HOSTING ACCOUNTS* Dear Trap17 members This comes right after the forum upgrade. Looks like the
forum upgrade took a huge toll on the forum database. Thus, it's resulting improper connection
and exchange between your forum account and your hosting account. If you have activated your hosting
account after my approval and noticed that your forum account did not say , your account will not
exist after this post. So, until further notice please refrain from activating your ....
Change In Hosting Packages For All Members
This a copy of email sent 3/21/05 (23) To all members of trap17.com , Management is pleased to inform you that we have made this great
hosting even better and easier to obtain. There are only 2 plans offered: Plan1 is an
introductory package for those who can’t wait to get started. 20 MB with 500 MB, 10 hosting credit.
Plan 2 is the new default package and is based on the old package 4 but with more bandwidth. 150 MB
with 3GB Bandwidth, 30 hosting credit. Part 1 is for hosted members. The changes are to the
packages and to the way they are obtained, users with package one have no changes. If you have ....
Fraudulent Emails Sent -=your Hosting Is Suspended=- "this Is Spam" And Not From Admins At Trap.
Be aware that fake suspension emails are sent. (27) Some one or some thing is sending out emails to the cpanel users of trap17.com stating that their
account is suspended. The email looks legit, however your hosting credits and site are all ok. If
you are having this problem please reply and state the situation. (please do not reply if your
hosting credits are not positive) Thanks Eric Drinkard....
Hosting Credits & Post Count!
When is one used and not the other? (0) OK, the confusion is when those who got hosting under the old rules see the question "How Many
Hosting Credits Do I Need To Get Hosted?" The following rules are for initial hosting and not for
upgrading an existing account. By the “new” rules you need to have a minimum of 10 hosting credits
to receive hosting Package 1 also known as the “Starter Package”. The nest step for initial hosting
is when you need more space. This need mere effort on your part with quality posts and you can then
apply for package 2 when you have 30 hosting credits. You have to show that you ha....
Forum Hosting Database Altered
(0) Hi, We lost the forum hosting database. The information related to members hosting account was
lost. Luckily, we had a backup and things have been restored back to normal. IN ORDER TO PREVENT
FURTHER ABUSE, I HAVE DISABLED THE ADMINISTRATOR GROUP AND SHIFTED ALL THE MEMBERS IN IT TO
MODERATOR. THESE ISSUES CAN BE VERY DANGEROUS TO THE HOSTING ACCOUNTS AND ANY ACCIDENT WITH THESE
DATABASE TABLES MAY COST THE WEB HOSTING ACCOUNTS OF THE MEMBERS. WE GIVE HIGHEST PRIORITY TO THE
RELIABLITY AND DATA. HENCE I HAD TO TAKE THIS STEP. I VERY MUCH SINCERELY APOLOGISE TO ALL....
Posting, Activity Rule, Automated Hosting Script..
Know about how this system works.. (0) Your post is COUNTED at 95% of the Forum Topics. There are some exceptions like "Hosting Request
forum", "Support" etc. where your post count does not increase. This is because we believe that
these areas do not contribute much the the Information base of the forums. QUOTE KEY POINT
Hosting Credits = "No. of Days a User can be *IN*ACTIVE" It determines the no. of days a user
can remain absent on our forums. So if you have 365 Hosting Credits. You can go for a long vacation
without visiting our forums for a Year. HOSTING CREDITS CAN BE VIEWED ON THE MAIN ....
Free Web Hosting Service Registeration
3 Easy steps to your new WebSite. (0) FREE WEB HOSTING 2 SIMPLE STEPS TO GET HOSTED AT THE BEST FREE WEB HOSTING SITE -> Trap17
( these steps are for those people who are extremely impatient and want to get started without
reading the instruction manual ) Register at our forums and take active part in it by
making *Good* Posts. (ofcourse, Without spamming... else you will be banned :-) ) For every post you
make, you get HOSTING CREDITS* . Once you get Required no. of Credits, You make a
Request at REQUEST FREE WEB HOSTING Section. Know more about making a Free web hosting ....
Looking for open, basedir, e, accelerator, activated, faster, secured, hosting,
|
|
Searching Video's for open, basedir, e, accelerator, activated, faster, secured, hosting,
|
advertisement
|
|
