|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Crispin Cowan (crispin
wirex.com)Date: Mon Mar 04 2002 - 02:18:06 CST
Leon Harris wrote:
> This may seem strange (rather than just going out and trying it) but
> we have a question from a client who wants us to host a mod_perl
> module, and set up mod_perl for him. Is it possible to subdomain an
> untrusted perl module - one that runs in the context of mod_perl and
> apache, both of which are not subdomained. I guess another way of
> asking this is is it possible to subdomain a thread of an unprotected
> parent. Pls excuse the naivity of the question.
Yes, SubDomain can do that. It is rather unique among access control
mechanisms in that regard. However, to make it work, you have to hack
Apache. See the SubDomain USENIX LISA 2000 paper for details
http://immunix.org/subdomain.pdf
In a future release, we expect to be supplying a hacked Apache that
provides for this kind of thing.
Crispin
-- Crispin Cowan, Ph.D. Chief Scientist, WireX Communications, Inc. http://wirex.com Security Hardened Linux Distribution: http://immunix.org Available for purchase: http://wirex.com/Products/Immunix/purchase.html_______________________________________________ Immunix-users mailing list Immunix-users
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]