SV: chroot or/and none root user

[Anders Berg]

If you feel it makes sense Poul-Henning, I certainly do.

Anders Berg

> -----Opprinnelig melding-----
> Fra: varnish-misc-bounces at projects.linpro.no 
> [mailto:varnish-misc-bounces at projects.linpro.no] På vegne av 
> Poul-Henning Kamp
> Sendt: 5. oktober 2006 11:38
> Til: varnish-misc at projects.linpro.no
> Emne: Re: chroot or/and none root user 
> 
> In message <4524B3EE.3060505 at linpro.no>, Ingvar Hagelund writes:
> >* Benny Kjellgren
> >>> I have started to test Varnish on Debian (and Archlinux) and the 
> >>> first thing I was looking for is to how to run Varnish as a none 
> >>> root user (eg www-data) and/or put it in a jail (chroot).
> >>>
> >>> Is it possible to do that ?
> >
> >* Poul-Henning Kamp
> >> If you don't use a priviledged listen port, it should just work.
> >
> >Any plans to use the model used by eg apache or squid, with a 
> >dispatching process running in priviledged mode, and process 
> children 
> >running with a non privilegded user?
> 
> We could do that, having the management process run as root 
> and he child as some other user.
> 
> -- 
> Poul-Henning Kamp       | UNIX since Zilog Zeus 3.20
> phk at FreeBSD.ORG         | TCP/IP since RFC 956
> FreeBSD committer       | BSD since 4.3-tahoe    
> Never attribute to malice what can adequately be explained by 
> incompetence.
> _______________________________________________
> varnish-misc mailing list
> varnish-misc at projects.linpro.no
> http://projects.linpro.no/mailman/listinfo/varnish-misc
> 

*****************************************************************
Denne fotnoten bekrefter at denne e-postmeldingen ble
skannet av MailSweeper og funnet fri for virus.
*****************************************************************
This footnote confirms that this email message has been swept by
MailSweeper for the presence of computer viruses.
*****************************************************************