Date: Thu, 18 Oct 2001 13:49:46 +0200 From: Sheldon Hearn <sheldonh@starjuice.net> To: "Andrey A. Chernov" <ache@nagual.pp.ru> Cc: Yarema <yds@dppl.com>, ports@FreeBSD.org Subject: Re: HEADS UP: Apache port change from nobody:nogroup to www:www planned Message-ID: <28552.1003405786@axl.seasidesoftware.co.za> In-Reply-To: Your message of "Thu, 18 Oct 2001 15:43:06 %2B0400." <20011018154306.C63215@nagual.pp.ru>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thu, 18 Oct 2001 15:43:06 +0400, "Andrey A. Chernov" wrote: > > Apache is not abusing nobody:nogroup -- users who don't configure their CGI > > environment are. The Right Thing is to run CGIs via suexec. > > No, Apache abuses nobody just running under it. It gains to it access > priveledges it must not have. Now you've TOTALLY lost me. You're saying processes shouldn't be run as nobody? :-) > > suexec works better if apache does run as nobody:nogroup. > > No. suexec works equally for any user/group. Exactly. :-) Ciao, Sheldon. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ports" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?28552.1003405786>