Michael S. Fischer
michael at dynamine.net
Wed Apr 16 17:45:26 CEST 2008
On Tue, Apr 15, 2008 at 11:53 PM, Poul-Henning Kamp <phk at phk.freebsd.dk> wrote:
> In message <86db848d0804151052i3ef158cfjba3c8b21eed03314 at mail.gmail.com>, "Mich
> ael S. Fischer" writes:
> >> Varnish for instance assumes that the administrator is not a total
> >> madman, who would do something as patently stupid as you prospose
> >> above, under the general assumption that if he were, varnish would
> >> be the least of his troubles.
> >I'm not saying that they would; I'm just saying that you can't count
> >on user 'nobody' having the precise role that a security-conscious
> >sysadmin would want.
> Which is why there is a -u argument, for people who muck up the
> configuration that has been standard on all decent UNIX'es for
> the last 15 years.
Thus answering OP's question. QED. :-)
More information about the varnish-misc