Apache2 safety?

Knapp magick.crow at gmail.com
Fri Aug 1 20:04:58 UTC 2008


On Fri, Aug 1, 2008 at 9:51 PM, Gordon Schulz <gordon.schulz at gmail.com> wrote:
> On Fri, Aug 1, 2008 at 9:34 PM, Knapp <magick.crow at gmail.com> wrote:
>> When I run this command, I get one instance that is running as root.
>> As I understand it that is bad for safety reasons, right? How do I
>> change it?
>>
>> apache2 mpm-worker kubuntu 8.04 64 bit.
>>
>> $ ps auwwfx | grep apache
>>
>> root      6758  0.0  0.2 123240  5240 ?        Ss   19:13   0:00
>> /usr/sbin/apache2 -k start
>> www-data  6759  0.0  0.1 121860  2344 ?        S    19:13   0:00  \_
>> /usr/sbin/apache2 -k start
> That's normal behaviour. One root process has to be there since
> privileged ports have to be opened (port 80 the most prominent).
> Subsequent processes that actually serve the content are then spawned
> www-data owned.
> --
> Greetings,
>  Gordon.

Thanks, that is nice to hear. Is there anything else that needs fixing
in the basic install to make thing as safe as can be? I am running
firestarter and only have port 80 open an a few others for torrents
and what not. Port 22 is closed, sure gets hit a lot!


-- 
Douglas E Knapp

http://sf-journey-creations.wikispot.org/Front_Page




More information about the kubuntu-users mailing list