 |
 |
 |
 |
|
|
Date: 01/25/99
- Next message: Bug Database: "[PHP-DEV] Bug #1090 Updated: Sybase persistent connections can't handle server restart"
- Previous message: Malcolm Hutty: "[PHP-DEV] Re: PHP Safe Mode"
- In reply to: Malcolm Hutty: "[PHP-DEV] Re: PHP Safe Mode"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
> Fair enough, it's all voluntary. Shame though that no-one is fussed
> about security, especially since we've done all the work and it just
> needs the patch to be applied.
I am very concerned about security and as such I never have two untrusted
users in the same Apache httpd pool. Separate pools for separate
customers all running under their own user id's is the most secure
approach.
Stuffing lots of users into the same httpd pool is something handy for
ISP's who need to lower the resource per customer ratio and thus increase
their profit margin. Although very useful, this is not my prime concern.
This is not the same as not being concerned about security.
-Rasmus
-- PHP Development Mailing List http://www.php.net/ To unsubscribe send an empty message to php-dev-unsubscribe <email protected> For help: php-dev-help <email protected>
- Next message: Bug Database: "[PHP-DEV] Bug #1090 Updated: Sybase persistent connections can't handle server restart"
- Previous message: Malcolm Hutty: "[PHP-DEV] Re: PHP Safe Mode"
- In reply to: Malcolm Hutty: "[PHP-DEV] Re: PHP Safe Mode"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]