Just a question, during the iworx install’s, apache is chrooted or not ?
Because when I use ftp listing with php script, I can access to the " / " of my production server. This is vulnerability for a server and that’s why I am asking this question.
No, it isn’t. Apache runs as the apache user, if you’re using mod_php, and as the SiteWorx Account unix user if you’re using suphp. Can you read only, or write, too?