Date: Wed, 1 Aug 2001 18:49:05 -0500 (CDT) From: Mike Silbersack <silby@silby.com> To: "Nickolay A.Kritsky" <nkritsky@internethelp.ru> Cc: "Karsten W. Rohrbach" <karsten@rohrbach.de>, <security@FreeBSD.ORG> Subject: Re[2]: accounting with ipfw (gid, uid riles) Message-ID: <20010801184745.M63961-100000@achilles.silby.com> In-Reply-To: <79100794374.20010801171300@internethelp.ru>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, 1 Aug 2001, Nickolay A.Kritsky wrote: > ;------------------------------------------------------------------ > # TAG: cache_effective_user > # TAG: cache_effective_group > # > # If the cache is run as root, it will change its effective/real > # UID/GID to the UID/GID specified below. The default is to > # change to UID to nobody and GID to nogroup. > # > # If Squid is not started as root, the default is to keep the > # current UID/GID. Note that if Squid is not started as root then > # you cannot set http_port to a value lower than 1024. > # > #cache_effective_user nobody > #cache_effective_group nogroup This looks commented out to me, are you sure that it's actually changing to nobody? Also, you'll have to check to make sure that the listen is after the uid change for the accounting to work. Mike "Silby" Silbersack To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010801184745.M63961-100000>