Hi, thank you ... can we assume this to be the same risks as the warning against using DSO modules? Is there any reasons to think that the apache would execute slower if compiled with this hook? Rgds - Fred William A. Rowe, Jr. wrote: > > fredk2 wrote: >> Hi, >> >> is there any reasons why you would not want in production (or hardened >> server) an apache compiled with -enable-exception-hook? > > Yes. You can and should expect that once the server is compromised, it's > possible although highly unlikely that the actual target of that hook is > also compromised. Many would rather that the process was brought down, > hard, at the first exception, and that code no longer ran in that context. > -- View this message in context: http://www.nabble.com/any-reasons-not-to-compile-with--enable-exception-hook--tp19565114p19609054.html Sent from the Apache HTTP Server - Users mailing list archive at Nabble.com. --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|