perl-modperl mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Kee Hinckley <naz...@somewhere.com>
Subject Re: security
Date Thu, 01 Mar 2001 08:33:26 GMT
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

At 9:44 AM +0800 3/1/01, Stas Bekman wrote:
>At this moment anybody who has an access to mod_perl server can read any
>data which is accessible by the same server. suexec is not an option
>because of process persistance.

I suspect this is why it is very easy to find hosting providers who 
provide PHP, and not as easy to find providers who support Embperl, 
Mason or other mod_perl solutions.  Is there any effort to deal with 
this?  (Per-virtual-server-process-sharing, with the option of 
dropping to zero processes, seems like a good start.)  I'd really 
like to see languages like Embperl stand a better chance going 
head-to-head against PHP.  It's very annoying to be able to whip 
together a great solution for my own servers, only to have to 
implement it for one of my clients in PHP, without nearly the power 
that Perl gives me.
- -- 

Kee Hinckley - Somewhere.Com, LLC - Cyberspace Architects
Now Playing - Folk, Rock, odd stuff - http://www.somewhere.com/playlist.cgi

I'm not sure which upsets me more: that people are so unwilling to accept
responsibility for their own actions, or that they are so eager to regulate
everyone else's.

-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 7.0.3 for non-commercial use <http://www.pgp.com>

iQA/AwUBOp4JiyZsPfdw+r2CEQJoRACgmZsE3GpeM2AhH2ooYID9iDxlnwAAmwf8
+sZ0r0rmQNuahRV07TpZ761e
=BSof
-----END PGP SIGNATURE-----

Mime
View raw message