Date: Wed, 06 Jul 2005 15:39:14 +0930 From: Wayne Sierke <ws@au.dyndns.ws> To: "P.U.Kruppa" <root@pukruppa.de> Cc: freebsd-questions@freebsd.org Subject: Re: squid bind to port 80 fails when started via squid.sh script Message-ID: <1120630154.57575.97.camel@au.dyndns.ws> In-Reply-To: <20050706033032.E21919@www.pukruppa.net> References: <1120584597.57575.51.camel@au.dyndns.ws> <20050706033032.E21919@www.pukruppa.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, 2005-07-06 at 03:33 +0200, P.U.Kruppa wrote: > On Wed, 6 Jul 2005, Wayne Sierke wrote: > > > FreeBSD 5.4-RELEASE/squid-2.5.9_3 > > > > If I start squid via the script (as root), I get: > > > > /var/log/squid_cache.log: > > > > commBind: Cannot bind socket FD 11 to *:80: (13) Permission denied > > FATAL: Cannot open HTTP Port > > Squid Cache (Version 2.5.STABLE9): Terminated abnormally. > Did you set > squid_enable="YES" Yes. > squid_user="root" No, it didn't occur to me. I was assuming that the script would set it to the required user and I didn't see any documentation about it. However I can now see that it should probably be self-evident for even a semi-competent user. :) > squid_flags="-D" No. It's the default in the script. > in /etc/rc.conf ? > > Regards, > > Uli. Just so I can learn a bit more from this - has this script been designed like this because it is specifically safer to launch the squid executable as user 'squid'? Or is it just because it's the 'norm' to avoid running programs (from launch scripts) as root whenever possible? Thanks for your help, Wayne
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1120630154.57575.97.camel>