On Thu, Sep 28, 2006 at 11:45:17AM +1000, Jamie Wilkinson wrote: > You can add yourself the overhead of Xen for a shared hosting environment, > but it's not necessary when you take the time to use a simple privilege > separation technique, e.g. mod_suexec.
Speaking of mods, http://www.modsecurity.org/ might well prevent a lot of badness. I don't know whether the administration involved in a complex isp hosting situation would be worth it though. (me googles) in "http://www.cerias.purdue.edu/weblogs/coj/secure-it-practices/post-37/ Ed Finkler says: "mod_security is an essential tool for securing any apache-based hosting environment" So who am I to argue :-) FWIW, there's also a post on this Mambo/Joomla worm: http://www.cerias.purdue.edu/weblogs/coj/infosec-education/post-11/ Matt -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
