yeah, rules in devfs always work. and it may introduce more challenge on
operation management, is there any way that we can do it more clean?
what challenges?
should we set the permission for :operator g+w on disks and partitions?
you still may just do chown/chmod
then we can put a dedicate user for trafficserver into operator group.
? 2012-07-22?? 17:03 +0200?Wojciech Puchar???
Apache Traffic Server may use raw disk for caching, and for privilege
elevation, the worker process(traffic_server) will setuid to nobody, my
question is, how to make traffic_server access the /dev/ada*?
in linux, disk permitting is root:disk 0660, we can go with:
1, setup a new user 'ats', and put it into 'disk' group
2, after setuid, run initgroups() to complete the groups evn.
devfs.conf
--
zym, Zhao Yongming.
aka: yonghao @ taobao.com
_______________________________________________
freebsd-hackers@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-hackers
To unsubscribe, send any mail to "freebsd-hackers-unsubscr...@freebsd.org"
