Re:security/feature request
2009/11/02 08:46:45
(permalink)
hummm, not sure I see how to do this at the user level. I tried to "autologin" to a user on a linux server but the user can only enable/disable PHP - maybe Im looking the wrong place. I will look some more.
anyway its not what I want :)
We want to make sure its not possible for resellers to offer and users to use perl/cgibin/exe anything like this. They are allowed asp/asp.net/php depending on windows/linux. Or ofcause be able to enable it for a user after we know for sure who he is and why we are enabling it.
For us its just disabling it all together in apache config, but it would be a nice feature to disable it and not have HC write all the DIR things to httpd.conf and so on.