Am 07.12.2011 22:58, schrieb Daniel Llewellyn:
On Wed, Dec 7, 2011 at 21:36, André Schild<[email protected]> wrote:
It will require (minal) more resoures for execution...
I guess if you're worried about resource usage you could write the
wrapper in C and compile it so that no interpreter is spawned until
PHP arrives. This would be no different, then, to running suPHP and
doesn't require potentially exploitable modifications to suPHP's
codebase.
But will introduced potential exploits when I make a error in my wrapper...
I don't think the patch opens new gaps, but of course, any line of code
is a potential danger ;)
(The reason LD_LIBRARY_PATH isn't passed through to client binaries is
for security considerations AFAIK.)
That's clear.
André
_______________________________________________
suPHP mailing list
[email protected]
https://lists.marsching.com/mailman/listinfo/suphp
