Add a security notice about using mod_lua on shared hosting.

author Daniel Gruno <humbedooh@apache.org>

Mon, 30 Jul 2012 13:31:28 +0000 (13:31 +0000)

committer Daniel Gruno <humbedooh@apache.org>

Mon, 30 Jul 2012 13:31:28 +0000 (13:31 +0000)
author Daniel Gruno <humbedooh@apache.org>
Mon, 30 Jul 2012 13:31:28 +0000 (13:31 +0000)
committer Daniel Gruno <humbedooh@apache.org>
Mon, 30 Jul 2012 13:31:28 +0000 (13:31 +0000)
diff --git a/docs/manual/mod/mod_lua.xml b/docs/manual/mod/mod_lua.xml

index 2b6268cfa5aac01c7a5a6e4a730dd5c230e21700..80d010f6c71cc67596109ca50a6a2dc23bebf1b0 100644 (file)
--- a/docs/manual/mod/mod_lua.xml
+++ b/docs/manual/mod/mod_lua.xml
@@ -47,6 +47,13 @@ Until it is declared stable, usage and behavior may change
  at any time, even between stable releases of the 2.4.x series.
  Be sure to check the CHANGES file before upgrading.</note>
  
+<note type="warning"><title>Warning</title>
+<p>This module holds a great deal of power over httpd, which is both a 
+strength and a potential security risk. It is <b>not</b> recommended 
+that you use this module on server that is shared with users you do not 
+trust, as it can be abused to change the internal workings of httpd.</p>
+</note>
+
  </summary>
  
  <section id="basicconf"><title>Basic Configuration</title>
author	Daniel Gruno <humbedooh@apache.org>
	Mon, 30 Jul 2012 13:31:28 +0000 (13:31 +0000)
committer	Daniel Gruno <humbedooh@apache.org>
	Mon, 30 Jul 2012 13:31:28 +0000 (13:31 +0000)