From owner-freebsd-questions@FreeBSD.ORG  Mon May  3 09:42:40 2004
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 883C716A4CE
	for <freebsd-questions@freebsd.org>;
	Mon,  3 May 2004 09:42:40 -0700 (PDT)
Received: from www6.web2010.com (www6.web2010.com [216.157.5.254])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 3921F43D3F
	for <freebsd-questions@freebsd.org>;
	Mon,  3 May 2004 09:42:40 -0700 (PDT)
	(envelope-from MLandman@face2interface.com)
Received: from delliver.face2interface.com (dialup-wash-129-203.thebiz.net
	[64.30.129.203] (may be forged))
	by www6.web2010.com (8.12.10/8.9.0) with ESMTP id i43GgF85009392;
	Mon, 3 May 2004 12:42:17 -0400 (EDT)
Message-Id: <6.0.0.22.0.20040503114633.01f0be98@mail.newdiets.com>
X-Sender: face@pop.face2interface.com
X-Mailer: QUALCOMM Windows Eudora Version 6.0.0.22
Date: Mon, 03 May 2004 12:42:33 -0400
To: Joe Rhett <jrhett@isite.net>
From: Marty Landman <MLandman@face2interface.com>
In-Reply-To: <20040503053729.GC23559@isite.net>
References: <200404262126.36157.mikkel@talkactive.net>
 <200404291406.58150.mikkel@talkactive.net>
 <6.0.0.22.0.20040429101444.0e68a6a0@pop.face2interface.com>
 <200404291713.13999.mikkel@talkactive.net>
 <6.0.0.22.0.20040429140657.11cf1120@pop.face2interface.com>
 <20040503053729.GC23559@isite.net>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"; format=flowed
cc: Mikkel Christensen <mikkel@talkactive.net>
cc: freebsd-questions@freebsd.org
Subject: Re: Suexec with Apache 1.3.29
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 03 May 2004 16:42:40 -0000

At 01:37 AM 5/3/2004, Joe Rhett wrote:
>On Thu, Apr 29, 2004 at 02:20:14PM -0400, Marty Landman wrote:
> > On the side, this makes me wonder what the philosophy is on Windows 
> servers
> > where the whole permissions concept is nonexistent afaik.
>
>Because suexec isn't really possible in that environment, so they have no
>options at all.

Maybe this is a foolish question, but how can reasonable security on a 
server running Windows/Apache be achieved? If the answer is what I fear, do 
you think that the 'native' MS server, IIS can be configured more securely 
than Apache?

Looking at it in another way, is it possible to have a secure, network 
accessible server of any type w/o the Unix style permissions concept in place?


Marty Landman   Face 2 Interface Inc.   845-679-9387
Web Installed Formmailer: http://face2interface.com/Products/Formal.shtml
FormATable  DB: http://face2interface.com/Products/FormATable.shtml
Make a Website: http://face2interface.com/Home/Demo.shtml