Unprivileged user?

Ricardo Newbery ric at digitalmarbles.com
Tue Apr 15 09:25:24 CEST 2008

On Apr 15, 2008, at 12:15 AM, Poul-Henning Kamp wrote:

> Ricardo Newbery writes:
>> I'm trying to understand the purpose of the "-u user" option for
>> varnishd.  It appears that even when starting up as root, and the
>> child process dropping to "nobody", Varnish is still saving and
>> serving from cache even though "nobody" doesn't have read/write  
>> access
>> to the storage file owned by root.
> The file is opened before the cache process drops to nobody, and in
> UNIX the access check is performed at open time and not at read/write
> time.

I must not be making myself clear.  Let me try again...

Assuming that "nobody" is an available user on your system, then is  
the "-u user" option for varnishd superfluous?


More information about the varnish-misc mailing list