On Sun, Oct 05, 2003 at 05:28:49AM +0800, Jason Wong wrote: > On Sunday 05 October 2003 04:24, messju mohr wrote: > > > the cgi-sapi has a big advantage in a shared hosting environment: > > suexec - your php-scripts run with a distict uid for each customer. > > > > this is by far better than the half-baked crutch called safe-mode. the > > fact that the cgi-sapi's performance is worse than apache-sapi's > > shouldn't bother you as much as security. your webhost will decide how > > many customers (=virtual hosts) he puts on one machine anyway and > > that's by far more noticable than the differences between > > cgi-sapi/apache-sapi, IMHO. > > A proper virtual hosting solution is what all vendors (of shared hosting > environments) should provide, with each user having their own virtual root.
you mean a chroot-jail for each virtual host? yes that would be the right thing. but to my knowledge this can not be done with apache 1.3 out of the box. apache 2's perchild-MPM should be capable of this, but the last time i checked it was far away from production-quality if working at all. -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
