Date: Wed, 20 Dec 2006 06:18:21 +0100 From: Frank Steinborn <steinex@nognu.de> To: jm-79@hotmail.com Cc: freebsd-apache@freebsd.org Subject: Re: apache root loader Message-ID: <20061220051821.1DCA3B822@shodan.nognu.de> In-Reply-To: <BAY115-W50D970627ED05CEA4BA27EBD00@phx.gbl> References: <BAY115-W50D970627ED05CEA4BA27EBD00@phx.gbl>
next in thread | previous in thread | raw e-mail | index | archive | help
jm-79@hotmail.com wrote: > > Hi, > > I wonder how many of you that use apache just straight from ports. I did a apache port install and discovered now by suprise that of course apache need root access to start. My question is how many of you guys has removed it if anyone have and why does no documents discuss this topic, is it assumed that this little root access can't do much harm so no need to make it run 100% ass the www user. > > Looking forward for some replies. > Jake! Apache will need root initially to bind to privileged port 80 (remember, ports 1-1024 are reserved for root). However, it will drop privileges and runs under uid 80 (www) then - assumed that you use the port. Frank
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20061220051821.1DCA3B822>