I’ve been working my way through the different solutions available for securing a shared hosting server. So far, I’ve looked at:

The solutions that are left on my todo list are:

Are there any other solutions for securing shared hosting that you know about, and would like me to include? If there are, let me know by leaving a comment below.

No Comments

  1. ah83 says:
    January 20th, 2008 at 1:31 pm

    Litespeed Webserver with Litespeed PHP SAPI
    and built in suexec support.

    apache mod_fcgid with suexec

    or you can use many striped down apache instances behind a reverse proxy.

    greets
    alex

  2. ah83 says:
    January 20th, 2008 at 1:39 pm

    if you go the virtualization route i would not choose vmware or xen for a webhosting enviroment.

    openvz/virtuozzo/vserver (os virtualization)is a better choice, because you can but more servers on a physical box.

  3. Derick Rethans says:
    January 20th, 2008 at 2:35 pm

    http://www.palsenberg.com/index.php/plain/projects/apache_1_xx_mod_suid

  4. Anthony Ferrara says:
    February 8th, 2008 at 12:28 am

    What about using FastCGI, but a separate spawner (spawn it yourself) as whatever user you want? Then you can spawn a dozen or so dispatchers, and point apache to the right one via v-hosts…

  5. Sebastian says:
    March 21st, 2008 at 1:07 am

    You might want to have a look at http://www.lighttpd.net/ (with fcgi & php)

This Month

January 2008
M T W T F S S
« Dec   Mar »
 123456
78910111213
14151617181920
21222324252627
28293031