On Fri, Jun 28, 2013 at 7:26 PM, Javier Guerra Giraldez <javier@guerrag.com> wrote:
--
Gustavo J. A. M. Carneiro
"The universe is always one step beyond logic." -- Frank Herbert
-- On Fri, Jun 28, 2013 at 1:16 PM, Gustavo Carneiro <gjcarneiro@gmail.com> wrote:in most cases, apache out of the box will let you simply drop *.php
> I don't know what you mean. You can use apache mod_wsgi to have apache
> directly serve Django web apps[1], same as PHP.
files anywhere you have static files and they'll be interpreted. many
people consider that an advantage.
Yeah. It's easier, true, no need to do apache configuration. I see your point.
On the other hand, scary. Putting on a sysadmin hat, the possibility of a PHP file accidentally lying around in certain places being able to be executed remotely would scare me. You _should_ be forced to do apache configuration, so that you tell apache explicitly what code can be executed.
--
Javier
--
You received this message because you are subscribed to the Google Groups "Django users" group.
To unsubscribe from this group and stop receiving emails from it, send an email to django-users+unsubscribe@googlegroups.com.
To post to this group, send email to django-users@googlegroups.com.
Visit this group at http://groups.google.com/group/django-users.
For more options, visit https://groups.google.com/groups/opt_out.
Gustavo J. A. M. Carneiro
"The universe is always one step beyond logic." -- Frank Herbert
You received this message because you are subscribed to the Google Groups "Django users" group.
To unsubscribe from this group and stop receiving emails from it, send an email to django-users+unsubscribe@googlegroups.com.
To post to this group, send email to django-users@googlegroups.com.
Visit this group at http://groups.google.com/group/django-users.
For more options, visit https://groups.google.com/groups/opt_out.
No comments:
Post a Comment