On 06/08/2024 21:05, Rob Landers wrote: > Hey Niels, > > I find this assertion kind of scary from a shared hosting perspective or even > from a 3v4l kind of perspective. How do these services protect themselves if > php is inherently insecure? > > — Rob
Hi Rob I'm not a sysadmin guy or anything like that, so I don't know how shared hosting stacks looks like in practice. But containers, chroot jails, seccomp-bpf, ... can offer protection. And you should be doing those things anyway (as a matter of defense-in-depth) if you're offering servers running untrusted code. Kind regards Niels
