I remember reading that some users raised issues about m0n0wall using
PHP for the webGUI, especially because of the security problems that PHP
has. I ran across this project: Hardened-PHP (www.hardened-php.net/),
which seems to be a project aimed at increasing the security of the PHP
engine itself. Would there be value in adding this to m0n0wall?
From what I can tell, the hardened-php patch is supposed to be applied
to the PHP distribution before PHP itself is installed, so hacking this
into m0n0wall might not work so well without the assistance of Manuel :-)
I would like to hear what other users think about this idea. I've been
using m0n0wall for several months now and I really like it, but there
are always things that can be done to make it even better and more secure.
Keep up the great work,
nickj at techreview dot ca