Renaud Drousies wrote:
In my opinion, I'd say that the main disadvantage of running a mod_perl
application is that your application runs with the webserver's
credentials, which means that:
- Any security hole means your whole webserver can be compromised
- If you need your catalyst app to access some ressources, then the
user/group the webserver is running as must be granted access to those
ressources.
If you run with the common setup of a reverse proxy and a separate
mod_perl server, the security situation is identical for FastCGI and
mod_perl.
- Perrin
_______________________________________________
List: [email protected]
Listinfo: http://lists.rawmode.org/mailman/listinfo/catalyst
Searchable archive: http://www.mail-archive.com/[email protected]/
Dev site: http://dev.catalyst.perl.org/
