Am 05.04.2008 um 11:59 schrieb sean finney:
hi,
On Saturday 05 April 2008 11:26:14 am Cajus Pollmeier wrote:
The problem is that these aspects are not packagable as some kind of
"fire and forget" installation. I'd prefer the way Roland proposed,
using some kind of
option 3 could work out of the box, though it just requires more
initial setup
work to get right in the packaging. i'm not saying it's the Right
Way, but
it would provide the necessary compartmentalizing.
Well - I guess this information would be good for the README. You
think about providing another apache init script + configs? Hmm. But
gosa+php works with other webservers, too. So the packaging overhead
might grow.
Or you force the use of apache-mpm-itk and let it run in a different
vhost as a different user.
RequestHeader set FooPassword very-secret-credentials
i suspect php users will still be able to find that out, in the same
way that
they can read ssl private keys from the webserver's memory (you
*did* know
they can do that, right? :)
Do you have more information about this? I guess this is only the case
for unpatched php instances, isn't it?
Cheers,
Cajus
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
