One of the problems of a multi-user web-server is that each user can install baggly php applications that enable improper downloads by hackers/crackers.
I have had problems with all xmlrpc.php (wordpress), sphpblog, mamboserver, etc. etc. that allow upload simple php-code that execute system commands from web access, and then use other server tools like wget, tar, make and install server (irc, bittorrent, ftp, etc.). The problem is that all php code is executed as webserver user (www-data) or a common user for all the users. Then www-data can install, wget, etc. But the principal problem is that all places where www-data can write the attack can write too. I found an excellent solution on Apache: suPHP module. http://www.suphp.org/Home.html The idea is simple: Each php is executed with the name:group of its owner. suPHP has additional protections: * root directory * minimal uid to execute .php (excelent to avoid root's php) * enabled by each virtual server To do this mod_suphp executes php as cgi. This is the cherokee way, for this reason I understand that a similar implementation will provide high php execution security to cherokee. Regards, Rodolfo Pilas
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Cherokee mailing list [email protected] http://www.alobbs.com/cgi-bin/mailman/listinfo/cherokee
