On 29 בינו 2013, at 17:45, "Ángel González" <keis...@gmail.com> wrote:
> On 29/01/13 15:21, Pierre Joye wrote: >> On Tue, Jan 29, 2013 at 3:16 PM, Zeev Suraski <z...@zend.com> wrote: >>> On Windows with impersonation you're actually in a better situation than >>> you are in Linux. You could hold a small pool of processes and handle as >>> many different users as you'd like. >> Works fine with ZTS too btw, IIS takes care about managing the >> respective application pools. >> >> But yes, impersonation is a huge on Windows/IIS, get ride of >> openbasedir and all that in one go (and again, not NTS specific). > > Wouldn't that be equivalent security-wise to running the server on linux > as root for > calling setuid() to each user? No, because the process is reusable and can be switched to other creds. Zeev -- PHP Internals - PHP Runtime Development Mailing List To unsubscribe, visit: http://www.php.net/unsub.php
