The open_basedir and a related .htaccess file in any directory works out fine and definetly can limit and confine an user in his own directory ,,, POINT is that this works as a self imposed limitation ,,, sofar User incrediblehelp can delete or replace the .htaccess file into his directory , , , in that case he would allow himself to peep anywhere in the server.

To avoid this at this point, I was told from my ISP that he can help myaccount by setting a bit on the directory .htaccess file of the FTP User (incrdiblehelp) that would make impossible for incrediblehelp (but also for myaccount) to delete the file itself , , , I know this is in the power of the ISP, but not in the power of cPanel owner myaccount.
In that sense the ISP could help cPanel user (myaccount) to tightly lock and confine incrediblehelp user into his own directory.

In other words no prisoner would keep himself locked if he has the key to go out of his cell.
So I am searching for an efficient key to be owned by myaccount only, I am not saying that ISP help is bad.

I thought that by upgrading server software, now my ISP runs my reseller account on Apache2 & php5 and these limitations should have been resolved, that is why I am digging into it.
My ISP says that that's how it is, but I have a feeling that some proper code implementation into the local (myaccount) php.ini file could solve this issue.

__________________
Php & JavaScript programmer @ pr.c-php.com/forum/