[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Proxy support in apache
Ira Abramov <ira@scso.com> wrote:
|On Mon, 11 Aug 1997, Amos Shapira wrote:
|
|> In message <Pine.LNX.3.95.970810140148.573A-100000@off> you write:
|> |no proxy compiled, it's a snap to recompile. like with ssh and squid I
|> |install the RPM, but recompile the actual binary after modifying it to
|>
|> Why don't you build your own RPM package? Or isn't it possible under
|> RH?
|
|A. ofcourse it is, I just didn't have the time to learn it yet, and
|haven't found the need yet.
You might want to try. At leaast with debian it is all automated.
Maybe also with RPM?
|> |what I need. that way I know I have a trusted binary from the original
|> |sources, but also a nice entry in the RPM db, that I can trust to check
|> |for future upgrades or dependency/conflict situatons. a busy daemon like
|> |apache is WORTH recompiling from original sources if you want to trust it
|> |100%...
|>
|> Ehh? Why so? In the kernel's case that's very reasonable, since you
|> have lots of tuning possibilities, but how does Apache benefit from
|> that?
|
|you can TRUST a binary you compiled yourself from original sources better.
The fact that YOU trust such privatly-compiled binaries just because
you personally typed "make" doesn't mean anything. People trust
source code when they read it and look for trojan hourses and security
bugs - did you ever look the Apache source for such holes? If not
then what makes you more comfortable with your own binary?
If you suspect someone tempered with the RPM file then I suppose you
can md5 it against some trusted site. If it comes from a CD then the
chance that someone has tempered with the binary you have on the CD
are even yet smaller than the ones for tempering with a source code
yuo might be fetching over the net.
|also Apache has many more options at compile time other than the proxy
|support...
That's a valid reason. Do any of the options you choose differ
significantly from the ones used to build the "official" RPM? Can't
you change them in the config file?
Ira, don't get me wrong, I don't mind you doing anything with your own
computer, but I don't like to see the spread of what are in my view
false practices in the Linux community. If you give me a good reason
to justify your recommandation then I'll shut up about this.
Cheers,
--Amos
--Amos Shapira | "Of course Australia was marked for
133 Shlomo Ben-Yosef st. | glory, for its people had been chosen
Jerusalem 93 805 | by the finest judges in England."
ISRAEL amos@gezernet.co.il | -- Anonymous
Follow-Ups:
References: