Securing mod_php – without the vasectomy

28th January 2010 by Mark Sutton

In it’s most typical setup, Apache 2/mod_php is not secure enough for shared virtual hosting. With the typical mod_php setup, a rogue webmaster or bug in a single PHP script could compromise every script and configuration file for every site …