Return to BSD News archive
Path: euryale.cc.adfa.oz.au!newshost.anu.edu.au!harbinger.cc.monash.edu.au!news.rmit.EDU.AU!news.unimelb.EDU.AU!munnari.OZ.AU!news.mel.connect.com.au!news.mira.net.au!inquo!in-news.erinet.com!imci5!imci4!newsfeed.internetmci.com!news.igcom.net!terra.igcom.net!david From: david@terra.igcom.net (David B. Bauman) Newsgroups: comp.unix.bsd.bsdi.misc Subject: Re: revoking root privledges from httpd Date: 12 Jun 1996 19:53:59 GMT Organization: InterGlobal Communications Lines: 24 Message-ID: <4pn78n$3nl@moon.igcom.net> References: <31BC1070.E88@atlanticfoods.com> <4pm0bp$91v@innocence.interface-business.de> NNTP-Posting-Host: terra.igcom.net X-Newsreader: TIN [version 1.2 PL2] J Wunsch (j@ida.interface-business.de) wrote: : Dave C <dcanatsey@atlanticfoods.com> wrote: : > I've heard that it's a BAD thing to run httpd while SUID. Granted I : > need SUID to grab port 80, but how do I then revoke SU status from the : > daemon? : A correctly written httpd does this for you. : -- : J"org Wunsch Unix support engineer : joerg_wunsch@interface-business.de http://www.interface-business.de/~j Perhaps you can elaborate? I have a correctly written httpd (apache) and all the process change ownerships once the httpd runs. However, the first httpd process stays owned by root. This makes it hard for my dedicated www clients to kill -HUP their deamon. Any ideas? DB --