On 1/23/07, Almir Karic <[EMAIL PROTECTED]> wrote:
what i would like to achieve is that on a shared host if bad guys (tm) break into one site they can't get to other sites.
"break in" has more than one meaning, and you might have different answers for different scenarios.
is this possible? i've been looking at su-exec but it is for cgi scripts only :/, what other options there are?
If you want isolation, given that "breaking in" can have multiple meanings, perhaps an option to look at is jailing each site. FreeBSD supports pretty reliable isolation of your web server into individual jails on the box. sysjail would be an alternative to look at for OpenBSD. DS
