* Graham Leggett [EMAIL PROTECTED] wrote:
Hi,
I am busy researching the idea of an Apache + DAV server that would do
the job of what a typical Samba server does now - file sharing. An
Apache server would have the advantage of native SSL support, flexible
authentication configuration, etc.
* Sander Temme [EMAIL PROTECTED] wrote:
snip
Could you mount the DAV filesystem on the local box, so that all access
would go through DAV? That way all access would go through Apache and
it could have its own sandbox.
a) are there *working* DAV filesystem drivers for several OS'es
b)
* Graham Leggett [EMAIL PROTECTED] wrote:
snip
But if this proper filesharing concept is to work properly, then at some
point the DAV server will have to support some kind of interaction with
the filesystem along far better lines than the current one user owns all.
Another point: why not
* Joshua Slive [EMAIL PROTECTED] wrote:
Hi,
Yes. I don't know of anyone successfully using perchild. There is another
group working on a successor called something like mpmmux, but they've
been rather quite too.
metuxmpm has been reported to be running successfully in production
On Fri, Apr 30, 2004 at 08:09:13PM +0200, Graham Leggett wrote:
André Malo wrote:
Hmm. I suspect, the difference is, that Apache was never designed to run as
root.
You're assuming the root account is the most damaging account to
compromise. In the case of a fileserver, you will very
On Fri, Apr 30, 2004 at 11:29:45AM +0530, Amit Athavale wrote:
Greg Stein wrote:
...
My POV has been (for a LONG while now): the DAV repository is private to
the web server and the mod_dav module. Don't let local users near it.
May be DAV ACL is the way to go ?
Nope. That is only about
Sander Temme wrote:
On Apr 29, 2004, at 10:59 PM, Amit Athavale wrote:
May be DAV ACL is the way to go ?
AFAIK WebDAV+ACL+some kind authentication serves the purpose where each
user having it own area and he can play with permissions of files
and yet you have
private repository and user
Greg Stein wrote:
Eesh. This has tended to come up w.r.t mod_dav for over five years now. My
point of view is best summarized in this email:
http://mailman.lyra.org/pipermail/dav-dev/2000-November/001746.html
I really don't recommend it. Why do you need to have different owners for
the files?
Joshua Slive wrote:
If you really want apache to behave like samba, then I suppose you don't
mind if apache runs as root. Then it becomes rather more simple to do the
sort of things you are interested in. It also becomes rather more simple
to compromise your box.
If I don't run Apache, then I
* Graham Leggett [EMAIL PROTECTED] wrote:
Keep in mind the application I am thinking about is not webserver
that's trying to be a fileserver, but rather a fileserver that just
happens to use the DAV protocol. I don't see the security risks of
running Apache as root as being any different
André Malo wrote:
Hmm. I suspect, the difference is, that Apache was never designed to run as
root.
You're assuming the root account is the most damaging account to
compromise. In the case of a fileserver, you will very likely want some
files kept more private than others. If I as a hacker
On Apr 30, 2004, at 10:26 AM, Graham Leggett wrote:
Keep in mind the application I am thinking about is not webserver
that's trying to be a fileserver, but rather a fileserver that just
happens to use the DAV protocol. I don't see the security risks of
running Apache as root as being any
On Thu, Apr 29, 2004 at 02:50:19AM +0200, Graham Leggett wrote:
Hi all,
I am busy researching the idea of an Apache + DAV server that would do
the job of what a typical Samba server does now - file sharing. An
Apache server would have the advantage of native SSL support, flexible
Greg Stein wrote:
One thing I would like to be able to do is have the DAV server read and
write files as system users, along the lines of what suexec achieves for
cgi programs. Obviously the DAV server would need to run as root (or
have some mechanism like suexec) in order to
On Thu, 29 Apr 2004, Graham Leggett wrote:
The perchild mpm seems to be the closest thing to what I am looking for,
but the manual warns that it is not functional. Is this still the case?
Yes. I don't know of anyone successfully using perchild. There is another
group working on a successor
15 matches
Mail list logo
