On 2024-07-15, J Doe <gene...@nativemethods.com> wrote: > I know in the past (before OpenBSD's httpd), the Apache package on > OpenBSD was packaged to run in a chroot. Does this still hold for > Apache 2.4.61 on OpenBSD 7.5 ?
The version of Apache httpd (1.x) that used to be in the base OS (before it was replaced by nginx) included a patch to chroot by default. That's never (IIRC) been the case for the 2.x versions in ports/packages. The mod_unixd module is included in the port though - that has a way to chroot (see https://httpd.apache.org/docs/2.4/mod/mod_unixd.html) but isn't done by default. -- Please keep replies on the mailing list.