Matt Ingenthron wrote:
It may also be interesting to see what, if anything, can be done about reducing privilege sets for this OpenSolaris Apache/PHP stack to at least reduce the possibility of nefarious activities if (when?) there is a vulnerability. My colleague Alec Muffet may be able to lend some thoughts there.
Start with the sun.com/blueprints articles by Glenn Brunette and I, where we cover using Apache as an example service. We didn't include PHP and that might add an additional wrinkle to what privileges are needed but since I know nothing about PHP I can't be sure.
Oh and BTW it is Muffett (two 't's in Alec's name one in mine :-)). -- Darren J Moffat _______________________________________________ opensolaris-discuss mailing list opensolaris-discuss@opensolaris.org
