Matt Austin wrote: > On Sun, Jun 21, 2009 at 10:23 PM, Frank > Groeneveld<[email protected]> wrote: >> It's not possible to run something as a different user without >> entering a password if your program is not running as root. Therefor, >> this behaviours seems only logical to me. > > But if this had to be the case, then static files would be served by a > Cherokee process running as root - which seems to me to be quite > dangerous (potentially serving up any file on your machine).
Any file that is in your documentroot... your normal user will face the same problem for every world readable file :) [so chroot is an option] > I'm not a programmer, but if the other guys can identify the issue and > have www-data communicate to the main cherokee process to spawn the > interpreter as a given user, that would be the best solution. That would still require the main process /cherokee/ to run as root, while /cherokee-worker/ is www-data. Stefan _______________________________________________ Cherokee mailing list [email protected] http://lists.octality.com/listinfo/cherokee
