App servers such as quixote, webware and skunkweb (just to name a
few) offer a clean environment to develop Python webapps. I have some
problems, however, understanding their security model.
My objective is to host webapps from different people on a single
Linux server; because of that, I want to be sure that one webapp
cannot interfere with another.
My first attempt at privilege separation went through users & groups.
Unfortunately application servers execute all python code under the
same uid; that way webapp 'a' from Alice can easily overwrite files
from webapp 'b' owned by Bob.
chroot() jails are not an option since I'd need one new process for
each request and that would be the same of using plain old CGIs, all
performance penalties included.
rexec and Bastion are deprecated, so I can't enforce security using
the Python VM itself. That leaves me without anything to work on.
Did I miss anything?
Regards,
Anakim Border
2  1570 
[Anakim Border] App servers such as quixote, webware and skunkweb (just to name a
few) offer a clean environment to develop Python webapps. I have some
problems, however, understanding their security model.
Since they each have different security models, that's not surprising.
This is a difficult problem for people approaching python. Hopefully it
is the sort of problem that will be brought more under control when
WSGI* is in widespread use and authentication is controlled using WSGI
middleware.
*: http://www.python.org/peps/pep-0333.html
My objective is to host webapps from different people on a single
Linux server; because of that, I want to be sure that one webapp
cannot interfere with another.
My first attempt at privilege separation went through users & groups.
Using unix users and groups is the best way to attain total separation
between environments. Either that or put them on different
user-mode-linux* hosts.
*: http://usermodelinux.org/
Unfortunately application servers execute all python code under the
same uid; that way webapp 'a' from Alice can easily overwrite files
from webapp 'b' owned by Bob.
Perhaps you could run multiple application servers? One per isolated
environment? Each of the above packages (quixote, etc) contains its own
standalone server, as well as the capability to integrate into other
server environments.
Use some form of proxy webserver in the front, which simply routes
requests to the relevant application server, based on URL, HTTP_HOST,
etc, etc.
Apache has a mod_proxy[1] designed specifically for this purpose. In
combination with mod_rewrite[2], that should give you fairly powerful
control over who gets to see which requests. You could probably roll
your solution fairly easily using one or more of the mod_python
Python*Handlers[3] and something like mod_scgi[4] or FastCGI[5].
1: http://httpd.apache.org/docs-2.0/mod/mod_proxy.html
2: http://httpd.apache.org/docs-2.0/mod/mod_rewrite.html
3: http://www.modpython.org/live/curren...-handlers.html
4: http://www.mems-exchange.org/software/scgi/
5: http://www.fastcgi.com/mod_fastcgi/d...d_fastcgi.html
Did I miss anything?
I am sure there are other approaches as well.
HTH,
--
alan kennedy
------------------------------------------------------
email alan: http://xhaus.com/contact/alan
Anakim Border wrote: few) offer a clean environment to develop Python webapps. I have some
problems, however, understanding their security model.
Did I miss anything?
They don't have a security model. AFAIK only Zope has.
Istvan. This thread has been closed and replies have been disabled. Please start a new discussion. Similar topics
by: Charles Handy |
last post by:
How does FastCGI compare against java Apps running in java app servers
like TomCat, Sun One, WebLogic and WebSphere? Is there a business case
for switching from CGI to Java? Performance?...
|
by: Michelle Stone |
last post by:
I am about to deploy our application on the Internet.
We will be moving our server (containing IIS and our
asp.net application) to the DataCentre of our country in
a few days for being online.
...
|
by: Raghu Raman |
last post by:
Hi,
I want to run the calculator.exe file from my c# webapp.I did this by
using the hyperlink control and the location of the exe is the navigate
url and is working nice.
But it gives the...
|
by: Mats Lycken |
last post by:
Hi,
I'm creating a CMS that I would like to be plug-in based with different
plugins handling different kinds of content.
What I really want is to be able to load/unload plugins on the fly
without...
|
by: Sam777 |
last post by:
I was under the impression that creating the app_offline.htm file at the
root of the webapp would cause all handles to be closed so that the app could
be removed. Unfortunately, this isn't the...
|
by: jhooper71 |
last post by:
It's been recommended to me to use a webservice and XML for the data
manipulation layer for web applications in .NET 1.1. I was thinking I
could use the web service to extend the database...
|
by: Arne |
last post by:
A lot of Firefox users I know, says they have problems with validation
where the ampersand sign has to be written as & to be valid. I don't
have Firefox my self and don't wont to install it only...
|
by: Samir Chouaieb |
last post by:
Hello,
I am trying to find a solution to a login mechanism for different
domains on different servers with PHP5.
I have one main domain with the user data and several other domains that
need...
|
by: joer.banno |
last post by:
Hi,
In a webapp I'm writing I need to know if another webapp is running
(both of which are asp.net), is there a way that you can check for the
presence of another webapp?
The problem is that...
|
by: CloudSolutions |
last post by:
Introduction:
For many beginners and individual users, requiring a credit card and email registration may pose a barrier when starting to use cloud servers. However, some cloud server providers now...
|
by: isladogs |
last post by:
The next Access Europe User Group meeting will be on Wednesday 3 Apr 2024 starting at 18:00 UK time (6PM UTC+1) and finishing by 19:30 (7.30PM).
In this session, we are pleased to welcome former...
|
by: ryjfgjl |
last post by:
In our work, we often need to import Excel data into databases (such as MySQL, SQL Server, Oracle) for data analysis and processing. Usually, we use database tools like Navicat or the Excel import...
|
by: taylorcarr |
last post by:
A Canon printer is a smart device known for being advanced, efficient, and reliable. It is designed for home, office, and hybrid workspace use and can also be used for a variety of purposes. However,...
|
by: Charles Arthur |
last post by:
How do i turn on java script on a villaon, callus and itel keypad mobile phone
|
by: ryjfgjl |
last post by:
In our work, we often receive Excel tables with data in the same format. If we want to analyze these data, it can be difficult to analyze them because the data is spread across multiple Excel files...
|
by: emmanuelkatto |
last post by:
Hi All, I am Emmanuel katto from Uganda. I want to ask what challenges you've faced while migrating a website to cloud.
Please let me know.
Thanks!
Emmanuel
|
by: BarryA |
last post by:
What are the essential steps and strategies outlined in the Data Structures and Algorithms (DSA) roadmap for aspiring data scientists? How can individuals effectively utilize this roadmap to progress...
|
by: nemocccc |
last post by:
hello, everyone, I want to develop a software for my android phone for daily needs, any suggestions?
| |
