Am 25.11.2005 um 10:51 schrieb Matthias Pigulla:
Because of bugs in the safe_mode implementation (forgetting some
checks?) or conceptual problems?
Safe mode doesn't work 'cos there are lots of third party libraries
which PHP relies on and don't take care of the safe mode. That's why
you can't assure security in you application and why it's up to your
operating system to care about security.
I have always maintained that shared hosts should be running
per-security context Apache instances as different users.
The problem with that is that it makes name-based virtual hosts pretty
pointless because each apache instance will at least need an ip
address
on its own.
It seems you've never heard of suexec, FastCGI, MPM Perchild (ok,
this one is broken) and Zeus (has nothing to do with Apache, but is a
good product). It's possible to have name based virtual hosts in
Apache2 and PHP processes running in the context of every user with a
patched suexec, mod_fastcgi and one single IP.
Regards,
A.
--
PHP Internals - PHP Runtime Development Mailing List
To unsubscribe, visit: http://www.php.net/unsub.php
