-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
On Thursday 19 June 2003 12:49, Mark Lane wrote: > From what I understand there is some security concerns but PHP on Apache > 1.3 has security concerns as well which Apache 2 addresses.
such as?
Under Apache 1.3 PHP scripts are all run as the Apache user. In a webhosting situation this means that I as a client can write a PHP script that will look at other peoples accounts because the Apache user has those rights.
Under Apache 2, PHP Scripts are run as the individual user so the scripts only have access to that client's files.
-- Mark Lane, CET mailto:[EMAIL PROTECTED] Hard Data Ltd. http://www.harddata.com T: 01-780-456-9771 F: 01-780-456-9772 11060 - 166 Avenue Edmonton, AB, Canada, T5X 1Y3 --> Ask me about our Excellent 1U Systems! <--
