|
Whitebeam - Applications/Templates.
|
Whitebeam Security...Whitebeam has been designed from the ground up to support large numbers of clients on a single common infrastructure. To
satisfy this target security has to be considered in every aspect of the design. The following list highlights
some of the key security aspects of the architecture: - No write access to the file-system.
- No execute access to the file-system
- File read access is only permitted within the virtual directory tree for the client servicing a request.
- No raw (SQL) access to the underlying database. All access is through templates that abstract
the database through a rigorous API calls.
- All template access is scoped by a unique client identifier - preventing unauthorised access to that portion of the database in use
by other clients
In addition the choice of Apache means that Whitebeam will run on variants of Unix specially tailored to address the high-security needs of e-business. |
|
(loadtime : 6ms) |