httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Nick Kew <n...@webthing.com>
Subject Re: [users@httpd] Apache 2.2 security concern
Date Sat, 12 May 2007 10:03:52 GMT
On Sat, 12 May 2007 05:00:24 -0400 (EDT)
Jaqui Greenlees <jaqui_greenlees@yahoo.ca> wrote:

> > pointless for providing security with php, and doing

security with php is an oxymoron ...

> > mass-hosting, php 
> > is something in pretty common use.
> Yes, PHP is very commonly used.
> No, suexec does not limit it's functionality to ssl
> and cgi, those those are the easiest implementations.

suexec is an option for that.  The other solution that
seems to be getting popular is fastcgi.

> > was mpm_perchild for apache 2.0, which apparently is
> > abandoned and 
> > broken. (see

Yeah, but there are third-party alternatives (metux, peruser)
if you insist on an MPM.  But the real purpose of the MPM
architecture is to enable Apache to be optimised for different
platforms.  The perchild family addresses a different problem,
and will inevitably sacrifice the performance of an optimal MPM.

> >  I 
> > lack the programing skills that would be needed to
> > repair it unfortunately.

Seems noone at apache wants it enough to fix it.  And noone
outside apache wants it enough to sponsor someone to fix it.
Except of course for those third-party options.

-- 
Nick Kew

Application Development with Apache - the Apache Modules Book
http://www.apachetutor.org/

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message