From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 4.0.0 (2022-12-14) on finch.gentoo.org X-Spam-Level: X-Spam-Status: No, score=-1.0 required=5.0 tests=DMARC_MISSING, MAILING_LIST_MULTI autolearn=unavailable autolearn_force=no version=4.0.0 Received: from sm10.texas.rr.com (sm10.texas.rr.com [24.93.35.222]) by chiba.3jane.net (Postfix) with ESMTP id 19C3C20ED743 for ; Sun, 10 Mar 2002 09:06:17 -0600 (CST) Received: from arn.net (cs666896-18.austin.rr.com [66.68.96.18]) by sm10.texas.rr.com (8.12.0.Beta16/8.12.0.Beta16) with SMTP id g2AF3515014364 for ; Sun, 10 Mar 2002 09:03:05 -0600 Received: by arn.net (sSMTP sendmail emulation); Sun, 10 Mar 2002 09:03:06 -0600 Date: Sun, 10 Mar 2002 09:03:06 -0600 From: mrfab@arn.net To: gentoo-dev@gentoo.org Subject: Re: [gentoo-dev] Gentoo observations Message-ID: <20020310150306.GA1290@powerhouse> Mail-Followup-To: gentoo-dev@gentoo.org References: <20020310031135.GA29666@powerhouse> <20020310093910.GA969@mouse.mydomain> <20020310134329.GA862@powerhouse> <20020310142233.GB2332@mouse.mydomain> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20020310142233.GB2332@mouse.mydomain> Organization: Project J38 X-URL: http://j38.net/ X-Mailer: Karate Mail 6.34 X-Memo: Gone is the mastadon, vanished complete X-Warning: This accuracy of this message has not been verified X-Originating-IP: [127.0.0.1] X-WebsiteUser-IP: [127.0.0.1] Sender: gentoo-dev-admin@gentoo.org Errors-To: gentoo-dev-admin@gentoo.org X-BeenThere: gentoo-dev@gentoo.org X-Mailman-Version: 2.0.6 Precedence: bulk Reply-To: gentoo-dev@gentoo.org X-Reply-To: mrfab@arn.net List-Help: List-Post: List-Subscribe: , List-Id: Gentoo Linux developer list List-Unsubscribe: , List-Archive: X-Archives-Salt: 6f1df45f-c7ef-4208-86f2-028c156e8f6f X-Archives-Hash: c7ac9e28f15a331d2ebb864c426b4db0 Ahh, no excuse me--I misread you. I thought you meant to run apache as root:www. On Sun 10 Mar 2002 at 08:22 -0600, Gert Menke wrote: > Hi, > > On Sun, Mar 10, 2002 at 07:43:29AM -0600, mrfab@arn.net wrote: > > I'd hesitate to go for root:www because there is always that possibility > > that php or mod_perl or just developer error in a script could allow a > > web user to overwrite a file--and with root permissions that could be a > > disaster. > Oh, I'm sorry. I was talking about the files when I said root:www. My httpd > runs as nobody:www. Or are you talking about files with the SUID bit set? > > Greetings > Gert > _______________________________________________ > gentoo-dev mailing list > gentoo-dev@gentoo.org > http://lists.gentoo.org/mailman/listinfo/gentoo-dev > > > > -- - Scott J Garner - - Austin, TX - USA - - ICQ: 17348307 AIM: Jungalero - - OPN: MrFab -