Apache2 and virtual hosts

[Madison Kelly]

Stephen wrote:
>   Even if you do get the control over Apache that you would like, you should still be doing bulletproof validation to your customer's form data. First make sure the data is in a form that you expect.
>    
>   Then, you don't want them touching the document root, and really just want to let them specify some file names. Or am I missing something?
>    
>   Before writing the file, check existence, permissions, etc. Your users will prefer an error message to a performance failure.
>    
>   Stephen

Well, as I mentioned in my reply to Jamon, I wanted to tell Apache2 to 
only fail misconfigured domains as a safety measure. I will run 
apache2ctl, as an initial check, but as John V.O. mentioned, this isn't 
completely safe, either.

I can do my own validation of a given config, but to do so would limit 
what the client could do and it would be limited to my knowledge of 
Apache2, which isn't as in depth as I would like. Obviously document 
root, script alias and log directory will not be editable, but the 
permissions and setting will be (if I can find a safe way to do this).

So my original question; How to prevent Apache2 from completely failing 
on a single VH container error, still stands. I want to make sure that 
each domain/user is isolated as much as possible from the mistakes of 
others while forcing the fewest number of restrictions. :)

Madison
--
The Toronto Linux Users Group.      Meetings: http://gtalug.org/
TLUG requests: Linux topics, No HTML, wrap text below 80 columns
How to UNSUBSCRIBE: http://gtalug.org/wiki/Mailing_lists