There is no security issue if you use proper permissions. Why are you
concerned that people can read files via the shell, when these same
files are served via the web server?
You should assume that anything on a publicly accessible web server is
public information. If there are sensitive files (such as config
files that contain passwords), then a different authentication method
should be used for those programs, or they should be secured with
proper file permissions. If you are truly concerned about setting up
secured web solutions, you should be running dedicated servers for
those applications.
-Adam
On 9/8/06, Biju <biju (at mark) simbanet.co.tz> wrote:
> Hi
>
> But this is a security issue.
> Is anybody working towards it?
>
> Thanks & Regards,
>
> Biju.V.P
> -----Original Message-----
> From: Dennis [mailto:dennis (at mark) mixfans.org]
> Sent: Wednesday, September 06, 2006 2:04 PM
> To: coba-e (at mark) bluequartz.org
> Subject: [coba-e:06771] Re: is our server secured?????? critical...
>
> This is happening as long as I am working with RAQ's and Qubes through SSH.
> You can watch but you cannot alter.
>
> about:
> ssh can see other sites config stuf
> >
>
>
>
>
>
--
-----------------------------------------------------------------
Shroom.net Donation Based Web Hosting
http://www.shroom.net/
-----------------------------------------------------------------