phk at phk.freebsd.dk
Wed Apr 16 08:53:35 CEST 2008
In message <86db848d0804151052i3ef158cfjba3c8b21eed03314 at mail.gmail.com>, "Mich
ael S. Fischer" writes:
>> Varnish for instance assumes that the administrator is not a total
>> madman, who would do something as patently stupid as you prospose
>> above, under the general assumption that if he were, varnish would
>> be the least of his troubles.
>I'm not saying that they would; I'm just saying that you can't count
>on user 'nobody' having the precise role that a security-conscious
>sysadmin would want.
Which is why there is a -u argument, for people who muck up the
configuration that has been standard on all decent UNIX'es for
the last 15 years.
Poul-Henning Kamp | UNIX since Zilog Zeus 3.20
phk at FreeBSD.ORG | TCP/IP since RFC 956
FreeBSD committer | BSD since 4.3-tahoe
Never attribute to malice what can adequately be explained by incompetence.
More information about the varnish-misc