Andrew Stribblehill wrote:
> Quoting Ivan Ristic <[EMAIL PROTECTED]> (2004-11-17 17:31:39 GMT):
>
>>Paul Querna wrote:
>>
>>
>>>I have had an idea for replacing the perchild MPM boggling around inside
>>>my head for awhile now. This is an idea for a different architecture to
>>>allowing different UIDs to serve httpd requests. I am looking for all
>>>feedback with my proposed approach.
>>
>> Are you familiar with FastCGI? My first impression is that most of
>> what you envision is possible today with FastCGI, or would be
>> possible with some (small) additional effort.
>>
>> FastCGI comes with a process manager that can be configured to
>> start server processes on demand. Server processes can work as
>> different uids (through suEXEC). I've used FastCGI to give individual
>> users their own PHP engines (since PHP now comes with FastCGI protocol
>> support built-in).
>>
>> I think the only part missing right now is the ability to compile
>> Apache to function as a FastCGI client, and accept requests over
>> FastCGI instead of HTTP. That can be a full version of Apache,
>> or a slimmed-down version (e.g. with no input/output filters).
>
>
> FastCGI is non-free. This solution also copes with things like
> mod_php and mod_perl being a different user. A Good Thing IMO.
Below is the licence included in the distribution. The way I read
it it's compatible with the Apache licence.
---
This FastCGI application library source and object code (the
"Software") and its documentation (the "Documentation") are
copyrighted by Open Market, Inc ("Open Market"). The following terms
apply to all files associated with the Software and Documentation
unless explicitly disclaimed in individual files.
Open Market permits you to use, copy, modify, distribute, and license
this Software and the Documentation for any purpose, provided that
existing copyright notices are retained in all copies and that this
notice is included verbatim in any distributions. No written
agreement, license, or royalty fee is required for any of the
authorized uses. Modifications to this Software and Documentation may
be copyrighted by their authors and need not follow the licensing
terms described here. If modifications to this Software and
Documentation have new licensing terms, the new terms must be clearly
indicated on the first page of each file where they apply.
OPEN MARKET MAKES NO EXPRESS OR IMPLIED WARRANTY WITH RESPECT TO THE
SOFTWARE OR THE DOCUMENTATION, INCLUDING WITHOUT LIMITATION ANY
WARRANTY OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE. IN
NO EVENT SHALL OPEN MARKET BE LIABLE TO YOU OR ANY THIRD PARTY FOR ANY
DAMAGES ARISING FROM OR RELATING TO THIS SOFTWARE OR THE
DOCUMENTATION, INCLUDING, WITHOUT LIMITATION, ANY INDIRECT, SPECIAL OR
CONSEQUENTIAL DAMAGES OR SIMILAR DAMAGES, INCLUDING LOST PROFITS OR
LOST DATA, EVEN IF OPEN MARKET HAS BEEN ADVISED OF THE POSSIBILITY OF
SUCH DAMAGES. THE SOFTWARE AND DOCUMENTATION ARE PROVIDED "AS IS".
OPEN MARKET HAS NO LIABILITY IN CONTRACT, TORT, NEGLIGENCE OR
OTHERWISE ARISING OUT OF THIS SOFTWARE OR THE DOCUMENTATION.
---
--
ModSecurity (http://www.modsecurity.org)
[ Open source IDS for Web applications ]
