httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Ryan Bloom" <...@covalent.net>
Subject RE: PHP and other security problems - a solution idea
Date Mon, 22 Apr 2002 13:41:30 GMT
> 
> The 'solution' is the perchild MPM ;)
> 
> Or a dirty hack; run apache as root and let it change uid based on the
> url's owner or something like:
> 
> <Directory /www/www.example.org/user/test/>
>  User test
>  Group users
> </Directory>
> 
> Something like that would be quite nice too, perhost MPM only will be
> able to do per-vhost uid-changes.
> With some patches (which haven't been accepted yet) perchild will

Which patches haven't been accepted yet.  The last time I had time to
hack on perchild, it did compile and run, although the file descriptor
passing isn't working yet.  If you could send me any patches you have, I
will be happy to incorporate them into the module.

Ryan



Mime
View raw message