Re: chroot or vm?

From: Nuno Magalhães <nunomagalhaes@xxxxxxxxx>
Date: Wed, 25 Feb 2009 13:17:15 +0000

Are you planning on running cgi, mod_php or similar? It you are
serving static html, basic security practices and a firewall would
be probably enough. Dynamic web servers are much more
vulnerable.

Yes i am, php through FastCGI, which implies i'll have to validate
user data, strip incoming characters, html-encode outgoing characters,
personalize error pages, plus a whole bunch of other stuff i'm not
thinking about right now.

Thanks for your input.

Nuno Magalhães
LU#484677

--
To UNSUBSCRIBE, email to debian-user-REQUEST@xxxxxxxxxxxxxxxx
with a subject of "unsubscribe". Trouble? Contact listmaster@xxxxxxxxxxxxxxxx

References:
- chroot or vm?
  - From: Nuno Magalhães
- Re: chroot or vm?
  - From: Kelly Clowers

Prev by Date: Re: Please brainstorm: Word-processor compatible with version control
Next by Date: Fedora guy byebyes Debian
Previous by thread: Re: chroot or vm?
Next by thread: Re: chroot or vm?
Index(es):
- Date
- Thread

Relevant Pages

Re: UCE Complaint (redhat-list digest, Vol 1 #8478 - 2 msgs)
... > unsolicited e-mail is not repeated. ... > To subscribe or unsubscribe via the World Wide Web, ... >> I have PHP and mysql on the system. ... > XDMCP using the HOWTO on ...
(RedHat)
Re: apache13_modssl + mod_php4 + php4-extenstions + mysql323-*+myphpadmin = ...
... that you mentioned of ports overwriting php files. ... http://lists.freebsd.org/mailman/listinfo/freebsd-que = stions ... To unsubscribe, send any mail to ...
(freebsd-questions)
Fwd: Returned mail: User unknown
... [PHP] PHP access of FileMaker data ... To unsubscribe, visit: http://www.php.net/unsub.php ... FileMaker data, and I came across the perfect fit: ... can make enough money to pay someone else to do it for you. ...
(php.general)
Re: apache13_modssl + mod_php4 + php4-extenstions +mysql323-*+myphpadmin = ...
... I installed PHP 4.3.10 from ports today on another machine to check what ... > I just got done installing Horde/IMP and I hate to tell you but ... To unsubscribe, send any mail to ...
(freebsd-questions)
Re: PHP: mysql_connect() undefined function
... Take a look in your phpinfo. ... PHP is connecting over the mysql.sock with the function mysql_connect. ... Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org ... To UNSUBSCRIBE, email to debian-user-REQUEST@xxxxxxxxxxxxxxxx ...
(Debian-User)