• Avid Amoeba@lemmy.ca
        link
        fedilink
        English
        arrow-up
        1
        ·
        edit-2
        9 months ago

        Not saying it’s not secure, just that I’d have constant doubts whether I’ve covered all the bases if I were doing it. Especially ensuring an intruder can’t compromise anything else if they take it over via some security exploit in PHP or DocuWiki itself.

    • Shimitar
      link
      fedilink
      English
      arrow-up
      1
      ·
      9 months ago

      The service runs as an unpriviledged user, even if, at worst, an intruder would delete or replace the wiki itself. Even the php-fpm behind it runs as that unpriviledged user and is not shared with any other service.

      I doubt an attacker could do anything worse than DoS on the wiki itself.