Re: ZTS - why are you using it?

From: Zeev Suraski Date: Tue, 29 Jan 2013 16:12:12 +0000

Subject: Re: ZTS - why are you using it?

References: 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 Groups: php.internals

Request: Send a blank email to [email protected] to get a copy of this message

On 29 בינו 2013, at 17:45, "Ángel González" <[email protected]> wrote:

> On 29/01/13 15:21, Pierre Joye wrote:
>> On Tue, Jan 29, 2013 at 3:16 PM, Zeev Suraski <[email protected]> wrote:
>>> On Windows with impersonation you're actually in a better situation than
>>> you are in Linux.  You could hold a small pool of processes and handle as
>>> many different users as you'd like.
>> Works fine with ZTS too btw, IIS takes care about managing the
>> respective application pools.
>>
>> But yes, impersonation is a huge on Windows/IIS, get ride of
>> openbasedir and all that in one go (and again, not NTS specific).
>
> Wouldn't that be equivalent security-wise to running the server on linux
> as root for
> calling setuid() to each user?

No, because the process is reusable and can be switched to other creds.

Zeev

Thread (55 messages)

Zeev SuraskiTue, 29 Jan 2013 09:03:51 +0000
netrobyTue, 29 Jan 2013 09:11:58 +0000
Alexey ZakhlestinTue, 29 Jan 2013 09:25:54 +0000
LaruenceTue, 29 Jan 2013 09:28:46 +0000
LaruenceTue, 29 Jan 2013 09:31:43 +0000
Zeev SuraskiTue, 29 Jan 2013 09:35:35 +0000RE: [PHP-DEV] ZTS - why are you using it?
LaruenceTue, 29 Jan 2013 09:38:28 +0000Re: ZTS - why are you using it?
Pierre JoyeTue, 29 Jan 2013 09:56:16 +0000
Pierre JoyeTue, 29 Jan 2013 10:06:46 +0000
Zeev SuraskiTue, 29 Jan 2013 11:10:09 +0000RE: [PHP-DEV] ZTS - why are you using it?
Pierre JoyeTue, 29 Jan 2013 11:15:53 +0000
Johannes SchlüterTue, 29 Jan 2013 11:45:21 +0000
Pierre JoyeTue, 29 Jan 2013 11:49:11 +0000Re: ZTS - why are you using it?
Johannes SchlüterTue, 29 Jan 2013 12:01:20 +0000
Pierre JoyeTue, 29 Jan 2013 12:13:05 +0000
Johannes SchlüterTue, 29 Jan 2013 20:43:17 +0000
Pierre JoyeTue, 29 Jan 2013 21:20:13 +0000
Zeev SuraskiTue, 29 Jan 2013 12:06:39 +0000RE: [PHP-DEV] ZTS - why are you using it?
Pierre JoyeTue, 29 Jan 2013 12:18:43 +0000Re: ZTS - why are you using it?
Zeev SuraskiTue, 29 Jan 2013 12:52:34 +0000RE: [PHP-DEV] ZTS - why are you using it?
Damian TylczyńskiTue, 29 Jan 2013 13:01:45 +0000Re: ZTS - why are you using it?
Pierre JoyeTue, 29 Jan 2013 13:18:35 +0000Re: ZTS - why are you using it?
Rasmus LerdorfTue, 29 Jan 2013 13:33:49 +0000
Pierre JoyeTue, 29 Jan 2013 13:37:21 +0000
Zeev SuraskiTue, 29 Jan 2013 14:16:35 +0000RE: [PHP-DEV] ZTS - why are you using it?
Pierre JoyeTue, 29 Jan 2013 14:21:09 +0000Re: ZTS - why are you using it?
Ángel GonzálezTue, 29 Jan 2013 15:43:22 +0000
Pierre JoyeTue, 29 Jan 2013 16:07:15 +0000
Zeev SuraskiTue, 29 Jan 2013 16:12:12 +0000
Zeev SuraskiTue, 29 Jan 2013 14:14:13 +0000RE: [PHP-DEV] ZTS - why are you using it?
Johannes SchlüterTue, 29 Jan 2013 14:27:58 +0000
Stas MalyshevWed, 30 Jan 2013 00:05:31 +0000Re: ZTS - why are you using it?
Martin KeckeisTue, 29 Jan 2013 11:28:35 +0000Re: ZTS - why are you using it?
Stas MalyshevTue, 29 Jan 2013 23:49:54 +0000
Pierre JoyeWed, 30 Jan 2013 06:05:50 +0000
Stas MalyshevWed, 30 Jan 2013 06:42:23 +0000
Pierre JoyeWed, 30 Jan 2013 07:16:26 +0000
Johannes SchlüterTue, 29 Jan 2013 11:05:43 +0000
Johannes SchlüterTue, 29 Jan 2013 11:15:22 +0000
Jan EhrhardtTue, 29 Jan 2013 11:45:42 +0000Re: ZTS - why are you using it?
Derick RethansTue, 29 Jan 2013 14:34:54 +0000
Martin NichollsWed, 30 Jan 2013 12:19:11 +0000

« previous	php.internals (#65416)	next »

From:	Zeev Suraski	Date:	Tue, 29 Jan 2013 16:12:12 +0000
Subject:	Re: ZTS - why are you using it?
References:	1 2 3 4 5 6 7 8 9 10 11 12 13 14 15	Groups:	php.internals
Request:	Send a blank email to [email protected] to get a copy of this message