Page MenuHomeFreeBSD

Further improve www/uwsgi daemon/socket security
ClosedPublic

Authored by feld on Jan 31 2017, 3:40 PM.
Tags
None
Referenced Files
Unknown Object (File)
Sat, Dec 7, 10:31 PM
Unknown Object (File)
Thu, Nov 21, 6:11 PM
Unknown Object (File)
Thu, Nov 21, 5:43 PM
Unknown Object (File)
Nov 16 2024, 1:18 PM
Unknown Object (File)
Nov 4 2024, 9:30 AM
Unknown Object (File)
Oct 19 2024, 2:08 PM
Unknown Object (File)
Oct 16 2024, 5:38 AM
Unknown Object (File)
Oct 8 2024, 6:00 AM

Details

Summary

Make uwsgi daemon run under its own user/group by default
Introduce setting to control socket ownership, permitting www:www access by default

This provides a clear separation between the daemon and the webserver while maintaining
compatibilty.

Diff Detail

Repository
rP FreeBSD ports repository
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

feld retitled this revision from to Further improve www/uwsgi daemon/socket security.
feld updated this object.
feld edited the test plan for this revision. (Show Details)
feld added a reviewer: AMDmi3.
AMDmi3 edited edge metadata.

LGTM. Additional UPDATING entry would be nice too

This revision is now accepted and ready to land.Jan 31 2017, 3:42 PM

adding demon, as this is his port

This revision was automatically updated to reflect the committed changes.