Use shadow passwords. That way, a malicious web writer can't grab the encrypted passwords and try to break them. It's easy: "pwconv" is the (only) command to run if your system is relatively modern (this may be somewhat specific to the Linux implementation of the shadow password system?).
If you need to protect the users from each other, you might consider:
Using Apache's suexec system. However, some people say that the system is so complex that there is risk of actually decreasing security due to misunderstandings; your milage may vary.
If you use PHP, consider running it in 'safe mode'
Some general purpose Linux/unix related security links:
Slashdot Mirror
Does anyone know if it's possible for the diskless clients to have sound through X applications run at the server?
The workstations will need a sound card, of course, but is X able to distribute the sound?
Use shadow passwords. That way, a malicious web writer can't grab the encrypted passwords and try to break them. It's easy: "pwconv" is the (only) command to run if your system is relatively modern (this may be somewhat specific to the Linux implementation of the shadow password system?).
If you need to protect the users from each other, you might consider:
Some general purpose Linux/unix related security links:
Finally: Keep your system up-to-date with the latest official patches. Consider joining the BugTraq mailing list.
At the time of writing, it's at
- And probably at many other mirrors.
- Due to the stupid form contruction. E.g., country doesn't seem to fit anywhere. Or I'm too tired.
See also http://www.php.net/usage.php3 for info about how PHP is doing (the graph doesn't have the January number yet, though).
That will not be of any help. If Netcraft can't get in touch with the web-server when gathering next month's stats, it will not be counted in.