PHP-FPM/Nginx Security In Shared Hosting Environments (Debian/Ubuntu)
Posted on: 09/26/2011 10:17 AM

Howtoforge shows you how to run PHP-FPM/Nginx in a shared hosted environment

PHP-FPM/Nginx Security In Shared Hosting Environments (Debian/Ubuntu)


If you want to use nginx and PHP-FPM for shared hosting environments, you should make up your mind about security. In Apache/PHP environments, you can use suExec and/or suPHP to make PHP execute under individual user accounts instead of a system user like www-data. There's no such thing for PHP-FPM, but fortunately PHP-FPM allows us to set up a "pool" for each web site that makes PHP scripts execute as the user/group defined in that pool. This gives you all the benefits of suPHP, and in addition to that you don't have any FTP or SCP transfer problems because PHP scripts don't need to be owned by a specific user/group to be executed as the user/group defined in the pool.



Printed from Linux Compatible (http://www.linuxcompatible.org/news/story/php_fpmnginx_security_in_shared_hosting_environments_debianubuntu.html)