I was trying to do the same thing. I settled on running one apache per virtualhost, and proxy-ing them through the main virtualhost. This way each apache only has permission to use it's own files, and only one server is comprimised if someone writes a security hole into their php/perl scripts. You will have to run each apache as a different user. Jake -----Original Message----- From: Patrick Donker [mailto:list@xxxxxxxxxxxx] Sent: Sunday, May 29, 2005 10:12 AM To: users@xxxxxxxxxxxxxxxx Subject: [users@httpd] Best way to host scripts Guys, What is the best way, security wise, to host cgi, perl or php scripts? Should I start using a jail or are there other ways to keep my server from being a worm or spam platform. Links to howtos or other threads are most welcomed. Thanks -Patrick --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|