My scenario: I have a shared hosting account running Apache that I use for

Question

0

Asked: June 11, 20262026-06-11T22:42:25+00:00 2026-06-11T22:42:25+00:00

My scenario: I have a shared hosting account running Apache that I use for

0

My scenario: I have a shared hosting account running Apache that I use for personal projects. Now a friend of mine needs a little space to put up a website for his hockey club. I decided to let him run it on my account and to give him an FTP account that limits his access to public_html/hockey.

My question: Is there a way to restrict his PHP scripts (in his hockey folder) in such a way that they couldn’t access any files outside the hockey folder? I’m looking for a solution involving something like a configuration in php.ini or .htaccess. Please do not reply to tell me he should try not to access anything outside that folder. I’m trying to improve security against intentional access and accidental security holes in his code.

If you know how to run his content in kind of a sandbox environment, any constructive input is greatly appreciated.

Thanks, Simon

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-06-11T22:42:26+00:00

Editorial Team

2026-06-11T22:42:26+00:00Added an answer on June 11, 2026 at 10:42 pm

You can use the open_basedir configuration setting to limit PHP’s reach. For example, to set open_basedir per directory in httpd.conf you would write

<Directory /var/www/public_html/hockey>
  php_admin_value open_basedir "/var/www/public_html/hockey"
</Directory>

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

My scenario: I have a shared hosting account running Apache that I use for

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply