How ZFS saved the Apache Foundation

Nice info. The main problem with the Apache is lack of file system control for httpd user. jail solves this problem by locking down www user to a jail directory. Other web server such as lighttpd offers chroot() security feature. jail is was the main reason when we made switch from both Sun and Linux server. Our corporate image server was hacked and replaced all images with nasty / pr0n images in 2001. Since FreeBSD we never got such a problem.
 
Solaris. It's in there.

aurora.apache.org runs Solaris 10, and we were able to restore the box to a known-good configuration by cloning and promoting a ZFS snapshot from a day before the CGI scripts were synced over
 
BTW, the topic title is, of course, a little hyperbolic.
 
It's just nice that a company is open about a security breach and is giving credit to the right people and systems for helping them to recover.
 
Very nice of them indeed to share with public their Achilles' Heel as well as the things that helped them recover. Unfortunately, though I happened on the site at that time, I didn't grab a screenshot. �e
 
Back
Top