From owner-freebsd-questions@FreeBSD.ORG Tue May 19 17:44:24 2009 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 20868106567F for ; Tue, 19 May 2009 17:44:24 +0000 (UTC) (envelope-from alexus@gmail.com) Received: from yx-out-2324.google.com (yx-out-2324.google.com [74.125.44.29]) by mx1.freebsd.org (Postfix) with ESMTP id CCDCA8FC21 for ; Tue, 19 May 2009 17:44:23 +0000 (UTC) (envelope-from alexus@gmail.com) Received: by yx-out-2324.google.com with SMTP id 8so2484192yxb.13 for ; Tue, 19 May 2009 10:44:23 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :date:message-id:subject:from:to:cc:content-type :content-transfer-encoding; bh=cLiGfufRmtPuUrp9o1WhCxAwng3+Q+RQeGMVBmrrBaU=; b=WzOgWTBvmY0l9aPpMJmkRiETh0y5FV7IWFlvNVk59Ld6cPGkCQbyGHDHbhmZOaX8gQ 0OHDnfSWvHUoBhgYZw8+1BDEvlgMiTqSk0JMBNyNfds7NTELd2vLUgyMHqchRSCJDgt5 2j1+GoeHsJuWFs1wumxw32ZDd5N3PXTU44k9E= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:content-transfer-encoding; b=toedQaI9dlLFSL9qEtIRn4ADvErGWZlu7cnkZ0vy0yaNebJ2bZz5RwkYXymdbvieI/ 7Eh/QsOwX0j3KsU64XGj36sndSKSx/lxtACcFgDi0U5Qj1LUqZCP+p4LV9TUSdIYYXo5 Ugffv8ED2WTkmV55ddJIFpLMUHSbjqvLpSauI= MIME-Version: 1.0 Received: by 10.151.141.7 with SMTP id t7mr655636ybn.253.1242755062995; Tue, 19 May 2009 10:44:22 -0700 (PDT) In-Reply-To: <4A115183.8080100@gmx.com> References: <6ae50c2d0905171301y2d92a7b1mc3598295de12ecc2@mail.gmail.com> <4A115183.8080100@gmx.com> Date: Tue, 19 May 2009 13:44:22 -0400 Message-ID: <6ae50c2d0905191044r4767b9a6pb824e4c70cbdffa6@mail.gmail.com> From: alexus To: Nikos Vassiliadis Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit Cc: "freebsd-questions@freebsd.org" Subject: Re: proftpd TLS X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 19 May 2009 17:44:24 -0000 On Mon, May 18, 2009 at 8:16 AM, Nikos Vassiliadis wrote: > alexus wrote: >> >> i just enable TLS for my proftpd and in tls.log I'm getting following >> messages >> >> mod_tls/2.2.1[45739]: error locking passphrase into memory: Operation >> not permitted >> mod_tls/2.2.1[45739]: TLS/TLS-C requested, starting TLS handshake > > From the error message, I can suspect that proftpd tries to > use mlock(2) to lock some page in physical memory. That's > typical behavior with programs dealing with sensitive data, > as passwords. The mlock system call can only by used by the > superuser. Is proftpd running with superuser privileges? > > Nikos > i start it as a root, but it switchs to non-root nobody 52346 0.0 0.1 11820 4208 ?? SsJ Sun06PM 0:00.66 proftpd: (accepting connections) (proftpd) -- http://alexus.org/