#ubuntu-server IRC channel
Soren Hansen
sh at linux2go.dk
Mon Mar 26 14:49:50 UTC 2007
On Mon, Mar 26, 2007 at 10:15:28AM -0400, Jim Tarvid wrote:
> I use Ubuntu on both shared and dedicated servers. The shared servers
> offer special security challenges. I've been working through php
> security on a shared server and it is a nightmare. The paranoid
> php.ini is useful as an example of what can be done but without some
> compromise, PHP websites will break.
I can recommend lighttpd with a per user fastCGI php process (apache can
do FastCGI, too, but I believe there are license implications of some
sort). That way, each user's stuff is run as the user and hence many of
the security implications of PHP are gone. Oh, and it's really fast,
too. :-)
--
| Soren Hansen | Linux2Go | http://Linux2Go.dk/ |
| Seniorkonsulent | Lindholmsvej 42, 2. TH | +45 46 90 26 42 |
| sh at linux2go.dk | 9400 Norresundby, Denmark | GPG key: E8BDA4E3 |
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
URL: <https://lists.ubuntu.com/archives/ubuntu-server/attachments/20070326/3920d867/attachment.pgp>
More information about the ubuntu-server
mailing list