Date: Wed, 2 Jan 2002 17:55:25 -0600 From: "Dustin Puryear" <dpuryear@usa.net> To: "Matthew Graybosch" <matthew@starbreaker.net>, <freebsd-questions@freebsd.org> Subject: RE: Getting Apache to run as user www only Message-ID: <PGECILGGNJGDPJKLFEMIKEGNCMAA.dpuryear@usa.net> In-Reply-To: <20020102183946.6695fc8c.matthew@starbreaker.net>
next in thread | previous in thread | raw e-mail | index | archive | help
> > > I think that takes a small prize for being the best suggestion for > > > introducing a security hole the size of the grand canyon into the O/S. > > > Just think about it, before you ask why... :) > > > > Thought about it. Now, why? > > I wonder what sort of havoc I could wreak if I were to crack an > httpd bound > directly to the kernel? What does that have to do with my suggestion which was to allow a specified user to bind to a given port. I am not sure where that leads to httpd being "bound directly to the kernel." Maybe I am missing something? Please enlighten me. :) Regards, Dustin To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?PGECILGGNJGDPJKLFEMIKEGNCMAA.dpuryear>