[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: PHP using suexec

My experience with PHP and suexec was less than favorable.  It is a
requirement for me that different virtual hosts have different PHP admin
settings (some sites don't need globals, some do).  I haven't found a
way to accomplish this virtual host dependent configuration using PHP in
CGI mode.  Since PHP+suexec needs to run in CGI mode, my virtual host
configs wouldn't apply.  I'm guessing that with Suexec enabled, I can
disable safe_mode and globals across the board and not significantly
lower my host security, though I would like to use the layered method
of security if possible.

However, there seems to be a patch to Apache which would fix this.
Also, I hear Apache 2.0 does something like suexec does natively.
So my question is: Are you running in CGI mode, or did you patch Apache?
I would greatly appreciate any other comments you think are related.


On Thu, Feb 06, 2003 at 10:25:52AM -0700, Vector wrote:
> I am running them both and have not yet had performance problems.  I stress
> tested the server before putting it into production and performance was
> acceptable so I went ahead with it.  I don't remember what the metrics were
> now it's been too long.   suexec is particularly handy if you have multiple
> vhosts or have user home directories that are cgi-enabled so you can keep
> the users and their programs honest.

Reply to: