Right.
Got LAMP (or BAMP) installed as deps. NEVER used PHP (but only on the command line) nor MySQL (besides deps that use it).
I stopped using PHP on the www server since I got aware of the numerous security checks I had to wire into the code: PHP code is easy to use, securing PHP code takes an unlimited amount of lines.
If you want to chroot PostgreSQL just install that db in a chroot'd environment.
Either you separate processes, or you don't. Linking a chroot'd db to a local db is a bad idea.
Better look for solutions as rsync or clusters, but don't allow chroot'd instances to access a production db.
__________________
da more I know I know I know nuttin'
|