From owner-freebsd-apache@FreeBSD.ORG Wed Dec 20 05:44:41 2006 Return-Path: X-Original-To: freebsd-apache@freebsd.org Delivered-To: freebsd-apache@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 7385D16A415 for ; Wed, 20 Dec 2006 05:44:41 +0000 (UTC) (envelope-from steinex@nognu.de) Received: from shodan.nognu.de (shodan.nognu.de [85.14.216.230]) by mx1.FreeBSD.org (Postfix) with ESMTP id 9BAE243CAD for ; Wed, 20 Dec 2006 05:44:34 +0000 (GMT) (envelope-from steinex@nognu.de) Received: by shodan.nognu.de (Postfix, from userid 1002) id 1DCA3B822; Wed, 20 Dec 2006 06:18:21 +0100 (CET) Date: Wed, 20 Dec 2006 06:18:21 +0100 From: Frank Steinborn To: jm-79@hotmail.com Mail-Followup-To: jm-79@hotmail.com, freebsd-apache@freebsd.org References: MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: User-Agent: mutt-ng/devel-r804 (FreeBSD) Message-Id: <20061220051821.1DCA3B822@shodan.nognu.de> Cc: freebsd-apache@freebsd.org Subject: Re: apache root loader X-BeenThere: freebsd-apache@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Support of apache-related ports List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 20 Dec 2006 05:44:41 -0000 jm-79@hotmail.com wrote: > > Hi, > > I wonder how many of you that use apache just straight from ports. I did a apache port install and discovered now by suprise that of course apache need root access to start. My question is how many of you guys has removed it if anyone have and why does no documents discuss this topic, is it assumed that this little root access can't do much harm so no need to make it run 100% ass the www user. > > Looking forward for some replies. > Jake! Apache will need root initially to bind to privileged port 80 (remember, ports 1-1024 are reserved for root). However, it will drop privileges and runs under uid 80 (www) then - assumed that you use the port. Frank