Hey. I'm thinking of making a free hosting website which allows people to get a little bit of space to make a website with access to PHP. The thing is, I need to protect users from eachother and protect users from trying to take down the server (eg making a script to use all cpu/ram with no time limit). I'd like to know what I need to protect against and how to go about doing it. So far I know I need to:
Preventing users from accessing files outside their home directory
Set a time limit to all of their php scripts
Prevent them from accessing eachother's cookies (eg user goes to siteA, gets a login cookie, later goes to siteB, siteB steals login cookie because they're on the same server with the same domain name).
How can I do the above things and is there anything else I need to secure against? Thanks.
