On Fri, Oct 07, 2005 at 02:48:07AM +0200, Hetz Ben Hamo wrote: [ regarding security ]
> With some other web hosting + shell - you are really totally depend on > his security measures, and I have been an employee of some of the well > known ISP's in this country who's their security skills and > implementation equal to something like Win XP + SP2 + minimal config > of some sort of freeware firewall (not all of them, some of them). > Care to test your luck, my friend? :) And not to mention that other users on the same server will install an old version of php-nuke/phpbb and eventually their accunt will get broken into. Thus you have to assume that there are some other hostile local users on the system. There are many hosting services with *bad* security track record. When you get an account, I figure you should try and check what exactly you can do. Because this will be exactly what other users will be able to do. For example: running mod_php code is a soar point in such a setup: that code has to be run by the apache server and with the permissions of the apache server. There are some hacks to try to prevent users from breaking each-other's programs (mainly safe_mode) but they break many programs. -- Tzafrir Cohen | [EMAIL PROTECTED] | VIM is http://tzafrir.org.il | | a Mutt's [EMAIL PROTECTED] | | best ICQ# 16849755 | | friend ================================================================= To unsubscribe, send mail to [EMAIL PROTECTED] with the word "unsubscribe" in the message body, e.g., run the command echo unsubscribe | mail [EMAIL PROTECTED]
