LP-Trel
Zen
Joined: 02 Dec 2002
Posts: 5721
Location: Nirvana by Boredom
|
 Posted: Tue Jun 28, 2005 2:02 am Post subject: State of the Lifelesspeople.com || June 2005 |
 |
|
Well hello everyone!
I thought the upgrades made over the last two days were worth a State of the Lifelesspeople.com announcement considering their importance.
Over the last 24-32 hours several new backend features have been implemented but, the most important is the new permission/acl subsystem.
The new permission setup will keep spying to an absolute minimum on the system with a considerable amount of information being locked up much tighter than on normal servers. This keeps proprietary information, passwords, email addresses, and other information much more secure.
The new acl system is a leap forward in terms of security. For example: You create a new directory but, make it chmod 777. On normal systems regardless of mod_php/phpsuexec that folder could be written to with anything anyone else wanted. With the new acl system that isn't an issue.
Also configuration files are commonly left at chmod 644 allowing others to read the information contained in them such as passwords or database login information. Before the acl system the installers commonly set these files to chmod 400 so they would only be accessible by the system user your account is tied to but, this wasn't enough. With the new acl system the system enforces the acls before permissions so despite the 644 chmod they cannot be read.
As you can see this is a leap forward in terms of security.
Other errors such as the addon/subdomain system have been fixed for the most part except a few errors still remain such as parked domains not being listed after being added in some cases.
Enjoy the new security! 
_________________
* Knowledge Base * Wiki * Forum FAQs * |
|
Forum FAQs 
Knowledge Base 
Memberlist 
Usergroups 
Hosting
Register
Donate 
Profile 
Log in 
