Date: Mon, 22 May 1995 22:59:40 -0400 (EDT) From: M BAILEY <mbailey@cps.cmich.edu> To: Mark Hittinger <bugs@ns1.win.net> Cc: hackers@FreeBSD.org Subject: Re: multi virtual web sites Message-ID: <Pine.SUN.3.91.950522225757.3233A-100000@cps201> In-Reply-To: <199505230252.WAA27625@ns1.win.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, 22 May 1995, Mark Hittinger wrote: > > I've seen some guys write a small root wrapper that gets the port and puts > up a chroot/chdir jail then drops privs and exec's httpd.....maybe thats what > you have? Sorta look at the config file for cern if you want I can send you mine the call as root the SUID to the specified user and group That has been part of the program for YEARS in both NCSA and CERN daemons. Why the hell would you need to write any wrappers for it when the code does it itself and yes they run on port 80 > > In any event parentuserid drops root privs right after the bind() call. > I probably do need to code some sort of chroot jail cell for the httpd > though. Why it is there!
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.SUN.3.91.950522225757.3233A-100000>