Date: 18 Jan 2001 21:21:35 +0100 From: Dag-Erling Smorgrav <des@ofug.org> To: Gordon Tetlow <gordont@bluemtn.net> Cc: "Michael R. Wayne" <wayne@staff.msen.com>, <hackers@FreeBSD.ORG> Subject: Re: Protections on inetd (and /sbin/* /usr/sbin/* in general) Message-ID: <xzpu26wvcfk.fsf@flood.ping.uio.no> In-Reply-To: Gordon Tetlow's message of "Thu, 18 Jan 2001 11:21:15 -0800 (PST)" References: <Pine.BSF.4.31.0101181119530.27604-100000@sdmail0.sd.bmarts.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Gordon Tetlow <gordont@bluemtn.net> writes: > If you are using apache (who isn't?), I highly suggest you look into using > suexec. That way bad CGI programming is offloaded to the customer and not > to your system. suexec has many weaknesses - amongst other problems, it does not set resource limits; nor does it chroot as far as I recall. DES -- Dag-Erling Smorgrav - des@ofug.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?xzpu26wvcfk.fsf>