Charles Duffy wrote: > Just curious -- have you looked into the peruser or metux MPMs for Apache?
peruser doesn't mean what you think it means. The idea behind peruser is that you can specify specific directory paths that should be executed under the permissions of a particular user that the child process is started as. The fundamental problem is that there is no notion in the web world of per request credentials that are not a password. Everyone seems to be quite happy either passing around passwords to back end services or to allow the operations to be conducted under a super user account and trust the web server to do the right thing.
smime.p7s
Description: S/MIME Cryptographic Signature
