httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Nick Gearls <nickgea...@gmail.com>
Subject Re: High security
Date Tue, 29 Jan 2008 15:11:07 GMT
I'm running the patch for one week on a production server, and it works 
perfectly (http://svn.apache.org/viewvc?view=rev&revision=611483).
When using Apache as a reverse proxy, the chroot environment is totally 
empty (except libgcc_s.so.1).

Could we include this in next build ?
As it is very limited (basically 3 basic function calls plus the 
logging), it is trivial to review.

+1

Regards,

Nick


[... discussion about chroot effectiveness and letting the final choice 
to the user to use it or not ...]

Mime
View raw message