Unprivileged user?
Ricardo Newbery
ric at digitalmarbles.com
Tue Apr 15 09:25:24 CEST 2008
On Apr 15, 2008, at 12:15 AM, Poul-Henning Kamp wrote:
> Ricardo Newbery writes:
>
>> I'm trying to understand the purpose of the "-u user" option for
>> varnishd. It appears that even when starting up as root, and the
>> child process dropping to "nobody", Varnish is still saving and
>> serving from cache even though "nobody" doesn't have read/write
>> access
>> to the storage file owned by root.
>
> The file is opened before the cache process drops to nobody, and in
> UNIX the access check is performed at open time and not at read/write
> time.
I must not be making myself clear. Let me try again...
Assuming that "nobody" is an available user on your system, then is
the "-u user" option for varnishd superfluous?
Ric
More information about the varnish-misc
mailing list