gpg: Signature made Thu Jan 31 17:24:06 2013 UTC
gpg: using RSA key BEB441496300CC3D
gpg: Can't check signature: No public key
On Thu, Jan 31, 2013 at 12:53:25PM +0000, Dom Latter wrote:
> On 30/01/13 18:06, Jeremy Kitchen wrote:
> >If you're trying to set up some sort of shared hosting (even if it's
> >just for a friend or 2), do not use mod_php. mod_php is impossible to
> >secure in a shared hosting environment without placing huge limits on
> >what the application can do (safe_mode, open_basedir, etc) which often
> >are incompatible with off-the-shelf applications.
>
> What do you think of mod_suphp?
Last time I investigated it, it was just loads of hacky. php as cgi is
cleaner, imo. But that was probably 4 years ago at this point, there may
have been significant improvements.
That being said, someone brought up mpm-itk, which seems like either
a fork or rewrite or independent project similar to apache's ill-fated
perchild mpm, and that's definitely appealing, but I think with fastcgi,
fpm, etc the problem is mostly solved at this point.
-Jeremy
