From owner-freebsd-security Fri Feb 2 9:51:49 2001 Delivered-To: freebsd-security@freebsd.org Received: from harrier.prod.itd.earthlink.net (harrier.prod.itd.earthlink.net [207.217.121.12]) by hub.freebsd.org (Postfix) with ESMTP id 9745C37B401 for ; Fri, 2 Feb 2001 09:51:32 -0800 (PST) Received: from pavilion (user-33qts7u.dialup.mindspring.com [199.174.240.254]) by harrier.prod.itd.earthlink.net (EL-8_9_3_3/8.9.3) with SMTP id JAA14916 for ; Fri, 2 Feb 2001 09:51:30 -0800 (PST) Message-ID: <001101c08d40$c6159360$0101a8c0@pavilion> From: "Richard Ward" To: Subject: Apache uid/gid Date: Fri, 2 Feb 2001 12:50:21 -0500 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2014.211 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2615.200 Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I'm not too sure this has anything to do with actual FreeBSD security, = though it has been on my mind for some time. I'm running Apache 1.3.12 = and it's binding to user and group id "nobody". When I start apache with = apachctl, it spawns the amount of daemons listed in httpd.conf, though = one of those spawns are running as root. I can kill the process running = as root and all is well. My question is: Is this a threat? Having this mystery process that's not = binding to the correct uid/gid specified, does it defeat the whole = purpose of binding Apache to it's own user/group? Thanks. -- Richard Ward, CEO richard@neonsky.net Neonsky Internet Services To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message