Security
suPHP and OSCommerce
Most customers have got to grips with suPHP and the necessary changes this well. However one thing we didn’t reference in our earlier post about suPHP, was a permissions error in OSCommerce. OSCommerce issues a warning if the user that PHP is running under is able to edit the configuration files. Obviously now we have [...]
Installing suPHP & Internal Server Errors
What is the difference between suPHP and “regular” PHP? Our regular installation of PHP has always run as the user “nobody” (a fact that often causes issues with temporary files and caches created by the webserver) and does not require the execute flag to run. This inherently creates a security risk that may allow other [...]
Getting Blocked by the Firewall
I’m repeatedly asked why people get blocked by our firewall solution, the answer to this is very simple. We’re protecting your data! When somebody who doesn’t know your password wants to break into your account they may try a random sequence of passwords to get in. The easiest way for them to do this is [...]