• Shimitar
    link
    fedilink
    English
    arrow-up
    1
    ·
    9 months ago

    The service runs as an unpriviledged user, even if, at worst, an intruder would delete or replace the wiki itself. Even the php-fpm behind it runs as that unpriviledged user and is not shared with any other service.

    I doubt an attacker could do anything worse than DoS on the wiki itself.