From owner-freebsd-questions@FreeBSD.ORG Wed Jul 6 15:35:48 2005 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 25F9216A41C for ; Wed, 6 Jul 2005 15:35:48 +0000 (GMT) (envelope-from root@pukruppa.de) Received: from moutng.kundenserver.de (moutng.kundenserver.de [212.227.126.186]) by mx1.FreeBSD.org (Postfix) with ESMTP id 93E7E43D55 for ; Wed, 6 Jul 2005 15:35:47 +0000 (GMT) (envelope-from root@pukruppa.de) Received: from reverse-213-146-114-24.cust.kamp-dsl.de [213.146.114.24] (helo=reverse-213-146-114-24.cust.kamp-dsl.de) by mrelayeu.kundenserver.de with ESMTP (Nemesis), id 0ML29c-1DqBvh32vu-0003cj; Wed, 06 Jul 2005 17:35:17 +0200 Date: Wed, 6 Jul 2005 17:36:34 +0200 (CEST) From: "P.U.Kruppa" X-X-Sender: root@www.pukruppa.net To: Wayne Sierke In-Reply-To: <1120630154.57575.97.camel@au.dyndns.ws> Message-ID: <20050706173054.P21919@www.pukruppa.net> References: <1120584597.57575.51.camel@au.dyndns.ws> <20050706033032.E21919@www.pukruppa.net> <1120630154.57575.97.camel@au.dyndns.ws> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed X-Provags-ID: kundenserver.de abuse@kundenserver.de login:2446dbdf8275641f979193ced594c629 Cc: "P.U.Kruppa" , freebsd-questions@freebsd.org Subject: Re: squid bind to port 80 fails when started via squid.sh script X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 06 Jul 2005 15:35:48 -0000 On Wed, 6 Jul 2005, Wayne Sierke wrote: > On Wed, 2005-07-06 at 03:33 +0200, P.U.Kruppa wrote: >> On Wed, 6 Jul 2005, Wayne Sierke wrote: >> >>> FreeBSD 5.4-RELEASE/squid-2.5.9_3 >>> >>> If I start squid via the script (as root), I get: >>> >>> /var/log/squid_cache.log: >>> >>> commBind: Cannot bind socket FD 11 to *:80: (13) Permission denied >>> FATAL: Cannot open HTTP Port >>> Squid Cache (Version 2.5.STABLE9): Terminated abnormally. >> Did you set >> squid_enable="YES" > > Yes. > >> squid_user="root" > > No, it didn't occur to me. I was assuming that the script would set it > to the required user and I didn't see any documentation about it. > However I can now see that it should probably be self-evident for even a > semi-competent user. :) I have no idea. Being a semi-competent user myself - I worked this out by trial and error because I had to set up a transparent proxy these days. Regards, Uli. >> squid_flags="-D" > > No. It's the default in the script. > >> in /etc/rc.conf ? >> >> Regards, >> >> Uli. > > Just so I can learn a bit more from this - has this script been designed > like this because it is specifically safer to launch the squid > executable as user 'squid'? Or is it just because it's the 'norm' to > avoid running programs (from launch scripts) as root whenever possible? > > > Thanks for your help, > > Wayne > > > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" > ********************************************* * Peter Ulrich Kruppa - Wuppertal - Germany * *********************************************