Newsgroups: php.internals Path: news.php.net Xref: news.php.net php.internals:20413 Return-Path: Mailing-List: contact internals-help@lists.php.net; run by ezmlm Delivered-To: mailing list internals@lists.php.net Received: (qmail 69299 invoked by uid 1010); 25 Nov 2005 15:46:20 -0000 Delivered-To: ezmlm-scan-internals@lists.php.net Delivered-To: ezmlm-internals@lists.php.net Received: (qmail 69284 invoked from network); 25 Nov 2005 15:46:20 -0000 Received: from unknown (HELO lists.php.net) (127.0.0.1) by localhost with SMTP; 25 Nov 2005 15:46:20 -0000 X-Host-Fingerprint: 204.11.219.139 lerdorf.com Linux 2.4/2.6 Received: from ([204.11.219.139:52716] helo=colo.lerdorf.com) by pb1.pair.com (ecelerity 2.0 beta r(6323M)) with SMTP id AB/99-56276-AC137834 for ; Fri, 25 Nov 2005 10:46:19 -0500 Received: from [192.168.200.106] (c-24-6-5-134.hsd1.ca.comcast.net [24.6.5.134]) (authenticated bits=0) by colo.lerdorf.com (8.13.5/8.13.5/Debian-3) with ESMTP id jAPFkEdO029521 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT); Fri, 25 Nov 2005 07:46:15 -0800 Message-ID: <438731C7.1010308@lerdorf.com> Date: Fri, 25 Nov 2005 07:46:15 -0800 User-Agent: Thunderbird 1.5 (Macintosh/20051025) MIME-Version: 1.0 To: Matthias Pigulla CC: internals@lists.php.net References: <00A2E2156BEE8446A81C8881AE117F192C1CF6@companyweb> In-Reply-To: <00A2E2156BEE8446A81C8881AE117F192C1CF6@companyweb> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Subject: Re: AW: [PHP-DEV] Re: PDM Meeting Notes From: rasmus@lerdorf.com (Rasmus Lerdorf) Matthias Pigulla wrote: > >>> Well, safe_mode could prevent someone of doing a shell_exec("cat >>> /home/otheruser/web/config.php"); open_basedir can't do the same >>> thing. >> We were in a continual losing race against that sort of thing though. >> In pretty much every single release there have been ways to >> do this that got around safe-mode. > > Because of bugs in the safe_mode implementation (forgetting some > checks?) or conceptual problems? > >> I have always maintained that shared hosts should be running >> per-security context Apache instances as different users. > > The problem with that is that it makes name-based virtual hosts pretty > pointless because each apache instance will at least need an ip address > on its own. That's not true at all. I run multiple Apaches all the time behind a single IP. In my main port 80 server I simply have config lines like this: ServerName example1.com ... ProxyPass / http://example1.com:81/ ServerName example2.com ... ProxyPass / http://example2.com:82/ That's just using Apache's mod_proxy. You can do the same thing with Squid in reverse proxy mode and you can get really fancy with redirect scripts where you keep all your vhosts in a database and cache them and control the redirection that way. -Rasmus