Threaded Mode | Linear Mode

monotek · 12-02-2006 05:50 AM

Why is awstats implemented in upcoming omega release?
Imho thats a security risk. More than one time there was ugly bugs which could be used to compromise a server using awstats.

Sure Awstats looks nice but is webalizer not enough anyway?

Is awstats only optional or is it always used?

**Shin** · 12-02-2006 06:20 AM

You can disable it from the code, but it is better that webalizer

monotek · 12-02-2006 06:23 AM

Yes ist is. And sometimes unsecure.
What do you mean with "You can disable it from the code"?
Will there be a config option to choose webalizer or awstats?

**Shin** · 12-02-2006 06:32 AM

no that you can modify the vhcs code for webalizer use

***ephigenie*** · 12-02-2006 11:18 PM

later on we could think over adding modlogan support i.e.

Donni · 12-05-2006 06:27 PM

Why not integrate Awstats with static page generation? If you use it with this option all output pages are pure html pages and there should be no security risk. AFAIR there is a "awstats static howto" somewhere in the official forum.

***RatS*** · 12-06-2006 04:36 AM

Yes, there is, it's made by me ...
The trunk is only a WIP-Version, please be patient!

monotek · 03-16-2007 11:30 PM

Is this changed to static genration yet?

**BeNe** · 03-16-2007 11:40 PM

I dont think so - Integrate AwStats support is change in the Roadmap to Omega 1.0.0.

**BioALIEN** · 03-17-2007 01:54 AM

I prefer AWStats to Webalizer. I know more newbie sys admins will convert to VHCS Omega because of this fact Smile

Threaded Mode \| Linear Mode Why is Awstats implemented? -> security risk
Author	Message