[Info-vax] Apache + mod_php performance

[Craig A. Berry]

On 10/11/24 1:56 PM, Dan Cross wrote:
> In article <vebqjs$3oaus$1 at dont-email.me>,
> Craig A. Berry <craigberry at nospam.mac.com> wrote:

>> $ show device/full
>>
>> on any BG device shows normal-looking device protections just as you
>> would see on any other device, e.g.:
>>
>> Dev Prot    S:RWPL,O:RWPL,G:RWPL,W:RWPL
> 
> Interestingly, for BG devies, they're _all_ the same, with the R
> bit set for everyone, which, if they just used the default
> scheme, would mean that any socket device was ASSIGNable to
> anyone, right?  That does not sound correct.  For example, here
> is an `ssh` socket on Eisner:
> 
> |Device BG8729:, device type unknown, is online, record-oriented device, network
> |    device, mailbox device.
> |
> |    Error count                    0    Operations completed                210
> |    Owner process        "SSHD 0012"    Owner UIC                      [SYSTEM]
> |    Owner process ID        00003C50    Dev Prot    S:RWPL,O:RWPL,G:RWPL,W:RWPL
> |    Reference count                2    Default buffer size                 256
> 
> Surely the device protection field here is misleading, at best?

Well, you _can_ change the values:

$ show security/class=device bg111

_BG111: object of class DEVICE
      Owner: [SYSTEM]
      Protection: (System: RWPL, Owner: RWPL, Group: RWPL, World: RWPL)
      Access Control List: <empty>

$ set security/class=device/protection=(w:r) bg111
$ show security/class=device bg111

_BG111: object of class DEVICE
      Owner: [SYSTEM]
      Protection: (System: RWPL, Owner: RWPL, Group: RWPL, World: R)
      Access Control List: <empty>

Note that World is now read, but write, physical, and logical have been
removed.  But I don't really know if that accomplished anything.  It
seems unlikely that BGDRIVER would just fill in values in a template
that don't mean anything, but testing out exactly what the protections
get you sounds like work.