31 Jan
2006
31 Jan
'06
5:16 a.m.
On Monday 30 January 2006 16:32, Charles Steinkuehler wrote:
This is kind of a moot point, however, as most any distribution will run Apache (or the webserver of your choice) with non-root permissions. The server gets launched as root only so it can start listening on port 80, then immediately drops permissions and runs as a different user (account typically specific to distribution and/or local configuration...debian uses www-data).
But there is always a possibility of a bug or exploit prior to dropping root privs... One thing that has always seems missing is the ability to set port "owners"...