Re: Apache Security
From: Rick Moen (rick_at_linuxmafia.com)
Date: 03/04/05
- Previous message: Colin McKinnon: "Re: Apache Security"
- In reply to: Colin McKinnon: "Re: Apache Security"
- Next in thread: Barton L. Phillips: "Re: Apache Security"
- Reply: Barton L. Phillips: "Re: Apache Security"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 04 Mar 2005 17:16:19 -0500
Colin McKinnon <colin.deletethis@andthis.mms3.com> wrote:
> While I want to protect against defacement, the point I was making was that
> since I charge for access to particular parts of the site, a hacker gets
> benefit simply by downloading files bypassing the normal controls. So not
> letting the webserver user write the data doesn't help.
I do appreciate your explaining the special sense in which you used the
term "protect". When most of us speak about "protecting the content" of
a Web document root, in the context of a Linux security newsgroup, we
are thinking primarily of preventing intruders from making unauthorised
changes or deletions.
I would suggest that you would be _much_ less likely to waste your time
and that of others (such as yr. humble correspondent) if you were more
precise in the future. And would request that you do so. Thank you.
-- Cheers, Hardware: The part you kick. Rick Moen Software: The part you boot. rick@linuxmafia.com
- Previous message: Colin McKinnon: "Re: Apache Security"
- In reply to: Colin McKinnon: "Re: Apache Security"
- Next in thread: Barton L. Phillips: "Re: Apache Security"
- Reply: Barton L. Phillips: "Re: Apache Security"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
