Apache 2.0 and Per Child Forking

So Apache 2.0 is here and while despite its recent onslaught of bugs it seems to have had lots of "patches" that hopefully will fix most of these problems.

Has anybody been using this in a Real World Environment?
Have you been using anyof the new "security" features like the Per Child Forking that allw you to run websites under different users ID?.

How well has this been running?
Does this solve alot of the PHP/Perl Security problems.
Does this require you to run Perl/CGI under suexec still? Y
ou run PHP as a module for faster execution (stillproviding the same security) ?
Do you still chroot a user to a directory?

Have there been any security quirks? problems you have noted?

Anybody tested anyof the "perl" snifferes or PHP vulnerabilities of pulling up files/directory listings from other directories?

 

 

 

 

Top