id	summary	reporter	owner	description	type	status	priority	milestone	component	resolution	keywords	cc
60	Apache handlers for PHP and static content	andersk		"We currently launch PHP and static-cat directly from suexec.  We should be able to replace this hack with a solution based on Apache handlers.
 * We can wrap PHP in a handler that performs extra security checks, such as that the extension really is .php.  This handler could later grow into the FastCGI PHP proxy pony.  It could also solve #2.
 * Static content should also become a handler, so that users can add their own static extensions.

The hardest problem is how to get these Apache handlers to run with the correct uid.  My last proposal was a FUSE filesystem that I have prototyped at /mit/andersk/Public/scripts/scriptswrapfs.c, but I’d be interested in better ideas."	enhancement	new	minor		web