Re: chroot or vm?
> Are you planning on running cgi, mod_php or similar? It you are
> serving static html, basic security practices and a firewall would
> be probably enough. Dynamic web servers are much more
> vulnerable.
Yes i am, php through FastCGI, which implies i'll have to validate
user data, strip incoming characters, html-encode outgoing characters,
personalize error pages, plus a whole bunch of other stuff i'm not
thinking about right now.
Thanks for your input.
Nuno Magalhães
LU#484677
Reply to: