From owner-freebsd-hackers  Mon May 22 19:59:48 1995
Return-Path: hackers-owner
Received: (from majordom@localhost)
          by freefall.cdrom.com (8.6.10/8.6.6) id TAA05989
          for hackers-outgoing; Mon, 22 May 1995 19:59:48 -0700
Received: from cps201.cps.cmich.edu (mbailey@cps201.cps.cmich.edu [141.209.20.201])
          by freefall.cdrom.com (8.6.10/8.6.6) with ESMTP id TAA05980
          for <hackers@freebsd.org>; Mon, 22 May 1995 19:59:45 -0700
Received: (from mbailey@localhost) by cps201.cps.cmich.edu (8.6.9/8.6.9) id WAA03252; Mon, 22 May 1995 22:59:41 -0400
Date: Mon, 22 May 1995 22:59:40 -0400 (EDT)
From: M BAILEY <mbailey@cps.cmich.edu>
X-Sender: mbailey@cps201
To: Mark Hittinger <bugs@ns1.win.net>
cc: hackers@FreeBSD.org
Subject: Re: multi virtual web sites
In-Reply-To: <199505230252.WAA27625@ns1.win.net>
Message-ID: <Pine.SUN.3.91.950522225757.3233A-100000@cps201>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: hackers-owner@FreeBSD.org
Precedence: bulk

On Mon, 22 May 1995, Mark Hittinger wrote:

> 
> I've seen some guys write a small root wrapper that gets the port and puts
> up a chroot/chdir jail then drops privs and exec's httpd.....maybe thats what
> you have?

Sorta look at the config file for cern if you want I can send you mine 
the call as root the SUID to the specified user and group
That has been part of the program for YEARS in both NCSA and CERN daemons.
Why the hell would you need to write any wrappers for it when the code 
does it itself and yes they run on port 80
> 
> In any event parentuserid drops root privs right after the bind() call.
> I probably do need to code some sort of chroot jail cell for the httpd
> though.

Why it is there!