Limit scripts access to directory only

lua-l archive

[Date Prev][Date Next][Thread Prev][Thread Next] [Date Index] [Thread Index]

Subject: Limit scripts access to directory only
From: Jan Schütze <JanS@...>
Date: Fri, 04 May 2007 09:13:54 +0200

Hello,

there was something like my problem in the list before [1], but I got adifferent problem with this.

Since we want to host different lua-websites on my server, we want tolimit the users' script access to his own directory only.


For Example:
foo
 - index.lua
bar
 - index.lua
 - pass.lua

Currently it is possible with lua to do the following:
 io.open([[../bar/pass.lua]]

So an other user is able to access this directory and its content. Ifall scripts would run with the same user account, he maybe would be evenable to write the files!

Of course I am aware of the fact that you could use multiple accounts onwindows or chroot on *nix (copying/symlinking the binaries, neededhere), this would be lots of work for admins to create a new user.

The soloution at the post from September 2003 [1] is not what I wanted,because its possible to overwrite the functions again, or am I wrong?Is there any compile option or powerpatch available to add this base dirlimit for scripts?


Kind regards,
 Jan (DracoBlue)

[1] http://lua-users.org/lists/lua-l/2003-09/msg00263.html

--

http://dracoblue.net

Follow-Ups:
- Re: Limit scripts access to directory only, Bertrand Mansion

Prev by Date: GetOpt
Next by Date: Re: Limit scripts access to directory only
Previous by thread: GetOpt
Next by thread: Re: Limit scripts access to directory only
Index(es):
- Date
- Thread