[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Document the bug fix policy regarding PHP Safe Mode

On Wed, Jul 13, 2005 at 08:31:25PM +0200, Florian Weimer wrote:
> <h2>Alternatives</h2>
> <p>Most large ISPs who run customer PHP scripts on shared hosting
> servers do not use <code>mod_php</code> (or other forms of direct
> integration into a web server), but use the CGI version of PHP, <a
> href="http://httpd.apache.org/docs/suexec.html";>suEXEC</a>, and a
> different user account for each customer and proper permissions.  This
> way, the operating system enforces the usual restrictions.</p>

Is there a security related difference between running suexec and
running mod_php with suphp?

greets Jimmy

                 Andreas "Jimmy" Gredler 
   ,'"`.         http://www.g-tec.co.at/ | jimmy@g-tec.co.at
  (  grml.org -» Linux for texttool-users and sysadmins
   `._,          http://www.grml.org/    | jimmy@grml.org

Reply to: