Boyle Owen wrote: > If you just load modules but don't actually use them (ie, no directives > in config), then no. That is not entirely true. Most register a hook provider to evaluate if they are the candidate for providing auth, injecting filters or handling the request. Those hooks do cost some cycles to evaluate and answer, even if the answer is always 'no, not this module'. So you are wise to remove modules that are not used. Also, some security flaws in the past have exploited only one module of httpd. The users who had not loaded or enabled that module were not affected. So it is also a courtesy to the next administrator down the road (or yourself) to simplify the number of modules loaded. --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|