[Varnish] #1482: [PATCH]: initialize supplementary groups before setuid()
Varnish
varnish-bugs at varnish-cache.org
Thu Apr 17 14:00:42 CEST 2014
#1482: [PATCH]: initialize supplementary groups before setuid()
-------------------------+--------------------
Reporter: idl0r | Owner:
Type: enhancement | Status: new
Priority: normal | Milestone:
Component: build | Version: trunk
Severity: normal | Resolution:
Keywords: |
-------------------------+--------------------
Comment (by idl0r):
It seems to be more a regression. Varnish 3.x did the gcc exec as root (or
the user that executes varnishd) and the setuid() is done afterwards. In
4.x it does the setuid() first and then the gcc exec.
The way Varnish 4.x does it is much better though it needs the proposed
fix to make it "perfect".
--
Ticket URL: <https://www.varnish-cache.org/trac/ticket/1482#comment:1>
Varnish <https://varnish-cache.org/>
The Varnish HTTP Accelerator
More information about the varnish-bugs
mailing list