PHP as CGI

[JHouston]

I dont understand why this hosting service runs PHP as CGI instead of as an Apache module which by the way is the way it is designed to run. Citing security as the reason is not acceptable. It is the easy way out and most quality hosting services run PHP as an Apache module. It takes just a bit more work to help secure but it is not something that takes up an enormous amount of time or effort to accomplish. You have zencart as one of your fantastico scripts but it will not even run effectively when PHP is run as CGI instead of as an Apache module. It will run, but will give problems in different areas as such. So I have started looking for other hosting options at least for my sites that I will be running zencart on and possibly move all my sites to the new Host. I am sorry it has come to this, but running things the shortcut way like this is just unnacceptable when I am trying to do business I need a host who takes that extra step to ensure that business can be done.

[kobra]

I am a frequent poster on the ZenCart Forum with the same nick...

H9 is running phpsuexec which is run as cgi...

I have a cart here with 70,000+ products that runs just fine.

I disagree that ZC will not function with php under cgi...and with this no files require 777 permissions and this is more secure and part of phpsuexec.

But I guess you can do what you prefer...

[JHouston]

Quote:

Originally Posted by kobra

I am a frequent poster on the ZenCart Forum with the same nick...

H9 is running phpsuexec which is run as cgi...

I have a cart here with 70,000+ products that runs just fine.

I disagree that ZC will not function with php under cgi...and with this no files require 777 permissions and this is more secure and part of phpsuexec.

But I guess you can do what you prefer...

I never said it wouldnt run, but in the installation routine it warns that it CAN cause problems and it lists several known issues with this. I honestly do not recall the specific issues I should have copied all that down normally I would have but did not and finished the install hoping it would work out. I do have zencart setup and it appears to be fine but am worried about the "potential" problems that were listed during the installation routine. What is the address to your shop? I would like to see what you have setup please.

[kobra]

As far as php in cgi mode this is all that is stated when selecting the "more"

Quote:

PHP running as cgi not recommended unless server is Windows

Running PHP as CGI can be problematic on some Linux/Unix servers.

Windows servers, however, "always" run PHP as a cgi module, in which case this warning can be ignored.

Not a long list of issues as you stated and does not address the phpsuexec environment at all which is inherrently more secure.

Running php as a native module, while a bit more efficient, requires from many scripts, 777 file permissions. This is always a security issue!

In the case of Joomla, many files are then owned by "nobody" and can not be managed. phpsuexec squares these issues.

I think your concerns might be mis-placed...

I, personally, do not operate a cart at this time.

[JHouston]

Quote:

Originally Posted by kobra

As far as php in cgi mode this is all that is stated when selecting the "more"

Not a long list of issues as you stated and does not address the phpsuexec environment at all which is inherrently more secure.

Running php as a native module, while a bit more efficient, requires from many scripts, 777 file permissions. This is always a security issue!

In the case of Joomla, many files are then owned by "nobody" and can not be managed. phpsuexec squares these issues.

I think your concerns might be mis-placed...

I, personally, do not operate a cart at this time.

OK, I can buy this and I see your point. Maybe I was a bit overly cautious. But once again, only going by what research I had done on this. I am by no mean an expert! I just read and try to decipher all this stuff best I can.