My question is just that simple, can i have jailed (in its own jail) each virtual host in ispconfig3?? (If some site is "defaced" or so i want to protect other sites on the same server). Any tutorial or guide available to do it?
You can not jail every vhost individually. But every vhost in ispconfig runs under its own user and with the permissions when you select the strong security mode plus some modifications in the php.ini by e.g. disabling exec its pretty save.
I do apologise for replying to this thread but I am trying to do the same. but which php.ini file do I use /etc/php5/cli/php.ini or /etc/php5/apache2.ini Also till says 'when you select strong security mode' where exactly is this selection made ? Thanks in advance By the way I'm using ISPConfig3 on Ubuntu 8.04
The php.ini depends on the php method you have choosen. /etc/php5/apache2/php.ini is for mod_php and /etc/php5/cgi/php.ini is for suphp, fcgi and cgi php. Do not edit the cli php.ini as this is used only for the commandline and not apache and editing the cli php.ini will stop ispconfig. In the server settings.
