On Fri, Mar 12, 2010 at 10:35 AM, Michiel van Es <m...@pcintelligence.nl> wrote: > > > -------- Original Message -------- > Subject: Re: [Cherokee] Cherokee Web Server version in ports tree > From: Diego Schulz <dsch...@gmail.com> > To: Michiel van Es <m...@pcintelligence.nl> > Date: 03/12/2010 02:33 PM > >> On Fri, Mar 12, 2010 at 9:53 AM, Michiel van Es<m...@pcintelligence.nl> >> wrote: >>> >>> Hi, >>> >>> I don't know if it is a problem but I also found out that the install >>> does >>> not create a cherokee user on freebsd and that cherokee is running as >>> root >>> default on freebsd... >> >> Yes, I noticed that too. I also changed the user manually from the >> admin interface. >> > > I tried that too but cherokee won't start with a fresh created cherokee user > or the www user. > The error: > Could not access file descriptors: [3] >
Probably you'll need to set proper permissions on log files and rrds directory (if you installed cherokee with rrdtool functionality). Also don't forget to chown to www:www the document_root. But yes, this clearly needs to be improved in the port. I'll try adding a config flag 'Run as www user' in the port's Makefile so the configure script is run with --with-wwwuser=www --with-wwwgroup=www before compiling. >>> Security wise it does not sound as a good idea to let it run as root ;) >>> (I know I can change it manually but it would be nice that the installer >>> installs the cherokee user and set the permissions right and then startup >>> as >>> cherokee user). >> >> I think it would be easier to reuse the standard www user (already >> registered in ports/UIDs and ports/GIDs, >> instead of creating a 'cherokee:cherokee' user/group. Please note that >> www:www user/group has nothing apache specific. >> Reusing www:www may be a concern when running apache and cherokee in >> the same installation, though. >> Who needs Apache anyway? ;) > > Nobody wants apache nowadays (although I really want the webdav > functionality ;) ) > But changing the user from cherokee to www did not help..only root helps :( > > Michiel > >> >> >>> >>> Kind regards, >>> >>> Michiel >>> >> >> regards, >> >> diego > _______________________________________________ freebsd-ports@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-ports To unsubscribe, send any mail to "freebsd-ports-unsubscr...@freebsd.org"
