DAV
Alan Cox
alan at redhat.com
Thu Oct 7 22:51:21 UTC 2004
On Thu, Oct 07, 2004 at 11:03:53PM +0100, Joe Orton wrote:
> I don't see how this makes sense with HTTP. The code with the buffer
> overflows is the HTTP parsing and SSL handling. THat's also the code
> which you must trust to determine what "user context" a request might be
A samba like httpd would take the first request running as a non-user with just
some basic auth rights and if neccessary start a server as that user via
a priviledged single purpose helper. It would then hand the socket to that
process (or could use http redirects except some DAV clients shit themselves
when this occurs)
Architecture is easy here, code is another matter !
More information about the fedora-devel-list
mailing list