To: dayglored
. Anyone who runs their webservice (e.g. Apache) as root deserves everything they get. ,If I am not mistaken most, if not all, pre-compiled binaries do not support Apache running as root.
I have built and manage a few Linux servers and I know of no reason one would want to run Apache as root?
Apache always starts as root to bind to privileged ports but immediately changes to user context.
10 posted on
11/11/2015 12:27:14 AM PST by
sand88
(We can never legislate our way back to Liberty)
To: sand88
>
... I know of no reason one would want to run Apache as root? Apache always starts as root to bind to privileged ports but immediately changes to user context. Correct.
But I have seen instances where the person who set it up, having an incomplete understanding of how to properly allow a web visitor write into a filesystem, simply configured Apache to run as root so it didn't encounter any problems writing.
As you might expect, hilarity ensued.
12 posted on
11/11/2015 6:44:16 AM PST by
dayglored
("Listen. Strange women lying in ponds distributing swords is no basis for a system of government.")
To: sand88
Apache always starts as root to bind to privileged ports but immediately changes to user context. Yup. Generally runs as 'nobody', and that user shouldn't have write access to anything important.
14 posted on
11/11/2015 7:15:35 AM PST by
zeugma
(Teach your child a love for motorcycles, and he'll never have money for drugs.)
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson