chroot or/and none root user
Poul-Henning Kamp
phk at phk.freebsd.dk
Thu Oct 5 11:38:05 CEST 2006
In message <4524B3EE.3060505 at linpro.no>, Ingvar Hagelund writes:
>* Benny Kjellgren
>>> I have started to test Varnish on Debian (and Archlinux) and the
>>> first thing I was looking for is to how to run Varnish as a none
>>> root user (eg www-data) and/or put it in a jail (chroot).
>>>
>>> Is it possible to do that ?
>
>* Poul-Henning Kamp
>> If you don't use a priviledged listen port, it should just work.
>
>Any plans to use the model used by eg apache or squid, with a
>dispatching process running in priviledged mode, and process children
>running with a non privilegded user?
We could do that, having the management process run as root and
he child as some other user.
--
Poul-Henning Kamp | UNIX since Zilog Zeus 3.20
phk at FreeBSD.ORG | TCP/IP since RFC 956
FreeBSD committer | BSD since 4.3-tahoe
Never attribute to malice what can adequately be explained by incompetence.
More information about the varnish-misc
mailing list