Page 1 of 1
Posted: Mon Feb 01, 2016 9:50 am
Sandstorm looks like an app store for linux where users can install and use their own web app. Is this something eskimo could use? It looks very cool and could be a big value add.
Posted: Mon Feb 01, 2016 9:57 am
Users can install it in their own webspace (public_html). It really doesn't look much help in terms of system apps given it's specific to apps developed for it's own platform.
Posted: Mon Feb 01, 2016 10:24 am
You are right it is another way of installing apps that can be installed under public_html. It makes the process a lot simpler. If I were to install wordpress in html I would have to mess around with adding and configuring the database. In reality I would ask you to do it. With Sandstorm I can just click install and start playing around with it.
Nanook wrote:Users can install it in their own webspace (public_html). It really doesn't look much help in terms of system apps given it's specific to apps developed for it's own platform.
Posted: Tue Feb 02, 2016 2:53 pm
It is a security issue. If installed on our space, it's not running with your UID, it runs with ours. Then any flaw in code you install ends up compromising every other application on our site, not good. If installed on your directory, it runs under your UID. Any bad code only affects your apps not every other customers.
Incidentally, if you do need a database, just send e-mail to firstname.lastname@example.org
with the desired password and I will set it up for you. Same if you need help setting up any web application.
I do things differently here for a variety of reasons. If you go to facebook and subscribe for example to WordPress Security, you'll find out just about everybody and their brother has hacked wordpress sites. This has to do with a variety of bad choices they and their hosting providers make ranging from Cpanel, which will convenient allows you to setup your site very insecurely and also plays badly with X-windows introducing some security issues of it's own. If you go to WordPress Speed, you'll find people think a page load speed of 600ms is a good thing, here the average page load speed is 104ms.
There are downsides to doing things the way I do, it makes them less convenient. But if you're trying to run a web based business, how fast your page responds figures very much into Google rankings, and if your page is hacked, it figures very poorly into your customers trusting you with things like credit card data.
Posted: Mon Feb 15, 2016 2:54 pm
Since I've received several additional requests, obviously there is interest in this. So I'm going to try to install with a dedicated IP. This won't stop sandstorm apps from interfering with each other but it will prevent them from compromising the rest of the site.
Posted: Tue Feb 16, 2016 7:55 pm
After investigating, Sandstorm may be "open source", but it's not free except for individuals.
So the upshot is, you can install it in your public_html and use it for free, but if I install it on the system, it's an additional cost, and so really can't do it at this time.
Posted: Sat Aug 19, 2017 12:35 am
Outlook users face the wide range of tech issues and problems which can occur suddenly. At that times, there is only a solution left for the users to make the best use of Outlook technical support.
Posted: Sat Sep 23, 2017 1:28 pm
Gary, I replied to this earlier. It is a security issue. Our web server runs every users applications under their UID, if we installed sandstorm.io, it would run under our UID and possibly hurt our website if hackers found any flaws in the code and would need to have public write permissions to install things in your user space.
However, you can install it in your own public_html, then it will run with your UID, not require system permissions or public write permissions on your directory, and any security flaws would only affect your space.
Posted: Fri Nov 03, 2017 10:48 pm
Its really nice post , Thank you for sharing with us , I've read all of your information that you shares in your article and I love it. Many thanks for showing this post. I enjoy it.