From owner-freebsd-ports@FreeBSD.ORG Fri Mar 12 13:54:14 2010 Return-Path: Delivered-To: ports@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id C95DD1065673 for ; Fri, 12 Mar 2010 13:54:14 +0000 (UTC) (envelope-from mve@pcintelligence.nl) Received: from pcintelw01.info.nl (dns.pcintelligence.nl [80.79.194.24]) by mx1.freebsd.org (Postfix) with ESMTP id 28CF68FC13 for ; Fri, 12 Mar 2010 13:54:13 +0000 (UTC) Received: (qmail 14870 invoked by uid 89); 12 Mar 2010 13:54:12 -0000 Received: by simscan 1.4.0 ppid: 14862, pid: 14865, t: 0.0177s scanners: attach: 1.4.0 clamav: 0.95.3/m:51/d:10025 Received: from unknown (HELO ?10.101.111.239?) (mve@pcintelligence.nl@80.79.194.3) by pcintelw01.info.nl with ESMTPA; 12 Mar 2010 13:54:12 -0000 Message-ID: <4B9A4776.3080802@pcintelligence.nl> Date: Fri, 12 Mar 2010 14:53:58 +0100 From: Michiel van Es User-Agent: Mozilla/5.0 (X11; U; Linux x86_64; en-US; rv:1.9.1.9pre) Gecko/20100217 Lightning/1.0b1 Shredder/3.0.3pre MIME-Version: 1.0 To: Diego Schulz References: <47dcfe401003091402m624734a7s732bc8df323ed365@mail.gmail.com> <7be7a2801003091434pd1e341v7d7d9758a5e361c1@mail.gmail.com> <47dcfe401003111548r71bfb6b1hcc38efd96510d849@mail.gmail.com> <4AA5768D-1916-47EB-8A1A-A9B30A33AA42@octality.com> <47dcfe401003120430r565474b9hb085cde4d833a0d6@mail.gmail.com> <5856DABC-3809-4990-A7B6-D636A8C5DD84@octality.com> <4B9A393D.7070100@pcintelligence.nl> <47dcfe401003120533m1422918ds30ed7acfb64f2931@mail.gmail.com> <4B9A4322.9020506@pcintelligence.nl> <47dcfe401003120552u6a095159u541ce9137a54bb3d@mail.gmail.com> In-Reply-To: <47dcfe401003120552u6a095159u541ce9137a54bb3d@mail.gmail.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: ports@freebsd.org, cherokee@lists.octality.com, Alvaro Lopez Ortega Subject: Re: [Cherokee] Cherokee Web Server version in ports tree X-BeenThere: freebsd-ports@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Porting software to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 12 Mar 2010 13:54:15 -0000 I wait for the updated port :) -------- Original Message -------- Subject: Re: [Cherokee] Cherokee Web Server version in ports tree From: Diego Schulz To: Michiel van Es Date: 03/12/2010 02:52 PM > On Fri, Mar 12, 2010 at 10:35 AM, Michiel van Es wrote: >> >> >> -------- Original Message -------- >> Subject: Re: [Cherokee] Cherokee Web Server version in ports tree >> From: Diego Schulz >> To: Michiel van Es >> Date: 03/12/2010 02:33 PM >> >>> On Fri, Mar 12, 2010 at 9:53 AM, Michiel van Es >>> wrote: >>>> >>>> Hi, >>>> >>>> I don't know if it is a problem but I also found out that the install >>>> does >>>> not create a cherokee user on freebsd and that cherokee is running as >>>> root >>>> default on freebsd... >>> >>> Yes, I noticed that too. I also changed the user manually from the >>> admin interface. >>> >> >> I tried that too but cherokee won't start with a fresh created cherokee user >> or the www user. >> The error: >> Could not access file descriptors: [3] >> > > Probably you'll need to set proper permissions on log files and rrds > directory (if you installed cherokee with rrdtool functionality). > Also don't forget to chown to www:www the document_root. But yes, this > clearly needs to be improved in the port. > > I'll try adding a config flag 'Run as www user' in the port's Makefile > so the configure script is run with --with-wwwuser=www > --with-wwwgroup=www before compiling. > >>>> Security wise it does not sound as a good idea to let it run as root ;) >>>> (I know I can change it manually but it would be nice that the installer >>>> installs the cherokee user and set the permissions right and then startup >>>> as >>>> cherokee user). >>> >>> I think it would be easier to reuse the standard www user (already >>> registered in ports/UIDs and ports/GIDs, >>> instead of creating a 'cherokee:cherokee' user/group. Please note that >>> www:www user/group has nothing apache specific. >>> Reusing www:www may be a concern when running apache and cherokee in >>> the same installation, though. >>> Who needs Apache anyway? ;) >> >> Nobody wants apache nowadays (although I really want the webdav >> functionality ;) ) >> But changing the user from cherokee to www did not help..only root helps :( >> >> Michiel >> >>> >>> >>>> >>>> Kind regards, >>>> >>>> Michiel >>>> >>> >>> regards, >>> >>> diego >>