Re: [PHP] safe mode bug ?

To: debian-isp@lists.debian.org
Subject: Re: [PHP] safe mode bug ?
From: William Dode <wilk-ml@flibuste.net>
Date: Sun, 06 Jun 2004 16:01:54 +0200
Message-id: <[🔎] 87n03grdil.fsf@blakie.riol>
In-reply-to: <[🔎] 40C31604.6050905@net-lab.net> (Andreas John's message of "Sun, 06 Jun 2004 15:03:00 +0200")
References: <[🔎] 40C30FBD.4030300@hensel.nl> <[🔎] 20040606124723.GA17902@bofh.hanau.net> <[🔎] 40C31604.6050905@net-lab.net>

Andreas John <aj@net-lab.net> writes:

> Hi!
>
> There are 2.5 possibilities that make sense.
>
> a.) mod_suphp [Any volunteers to put that into debian tree??:-)]
> www.suphp.org
> b.) Run php as cgi and attach she-bang (#!/path/to/pgp-cgi)
> c.)  Run php as cgi and teach the environment to treat .php files like
> binaries with the "binfmt" kernel module
>
> Personally I did not decide wether to take a.) or c.) ...

When you run as cgi, with suexec, you need also to have a chmod +x, and
good group and owner. So it seems to be a pain in the begin but after
you're happy to have something really secure.

-- 
William - http://flibuste.net

Reply to:

References:
- [PHP] safe mode bug ?
  - From: Robert Hensel <robert@hensel.nl>
- Re: [PHP] safe mode bug ?
  - From: Franz Georg Köhler <lists@openunix.de>
- Re: [PHP] safe mode bug ?
  - From: Andreas John <aj@net-lab.net>

Prev by Date: Re: [PHP] safe mode bug ?
Next by Date: Re: [PHP] safe mode bug ?
Previous by thread: Re: [PHP] safe mode bug ?
Next by thread: Re: [PHP] safe mode bug ?
Index(es):
- Date
- Thread