On Fri, 19 Mar 2004 22:05, Joris <[EMAIL PROTECTED]> wrote: > > The interesting thing is that no one works on fixing perchild MPM in > > apache2 that would allow to use standard mod_php in secure way :/ > > Is that the mode where the clients run with a different uid for each > virtual host?
Yes. One thing that we have idly talked about is getting perchild MPM to re-exec apache for each child (instead of just fork and setuid()). This would permit a SE Linux aware version of the module to have each instance in a different security context. -- http://www.coker.com.au/selinux/ My NSA Security Enhanced Linux packages http://www.coker.com.au/bonnie++/ Bonnie++ hard drive benchmark http://www.coker.com.au/postal/ Postal SMTP/POP benchmark http://www.coker.com.au/~russell/ My home page