From: Joel Palmius <[EMAIL PROTECTED]> Date: Thu, 31 Jul 2003 11:12:02 +0200 (CEST)
The question is, what is the state-of-the-art approach for protecting data written to a file by mod_perl from being overwritten by an untrusted user? Is it possible to run all mod_perl things as a separate user (without having to keep two parallel apache installations)?
You don't need, parallel installations, just parallel instances.
One main server running on port 80 set up to proxy requests to the relevant user's process.
Individual users have their own httpd.conf set up with a unique port under a unique user (themselves, for instance).
Each instance is started by simply running: $ httpd -f /path/to/that/users/httpd.conf
_________________________________________________________________
MSN 8 helps eliminate e-mail viruses. Get 2 months FREE*. http://join.msn.com/?page=features/virus
