Yes they can do that without root access, and a smart scripter could even do it without SSH (using complicated PHP scripts). Nevertheless, with our security package (as described by email and in your other thread) we would take away this risk because we will make it impossible for a customer to compile an IRC application (and other harmful applications), and also with this security package PHP will be a lot more secure (using mod_security).
Without this module, it's basically possible for a scripter to use an SSH environment, even if he doesn't have any SSH access. So it's essential to take away a risk like that.
-----------------
Andre van Vliet
SolidHost Administrators
Solid as a Rock
Last edited by SH-Andre; Apr 19th, 2005 at 10:43.
|