Damjan wrote: > Yes, but your mod_python programs still run with the privileges of the > Apache process, as are all the other mod_python programs. This means that > my mod_python program can (at least) read files belonging to you - > including your config file holding your database password....
I think a standard solution to this is to associate each virtual host server to a different port and have the main apache redirect to the port. Inetd makes sure that the vserver apache instance only stays alive while it's needed. It might be complicated to set up, but it works. Again, something like this is probably advisable anyway to limit the ways one vserver can damage another generally speaking. -- Aaron Watters === It's not the years. It's the mileage. -- Indiana Jones -- http://mail.python.org/mailman/listinfo/python-list
