Return-Path: 
 <users-return-4831-apmail-httpd-users-archive=httpd.apache.org@httpd.apache.org>
Delivered-To: apmail-httpd-users-archive@httpd.apache.org
Received: (qmail 80585 invoked by uid 500); 5 Apr 2002 22:21:52 -0000
Mailing-List: contact users-help@httpd.apache.org; run by ezmlm
Precedence: bulk
Reply-To: users@httpd.apache.org
list-help: <mailto:users-help@httpd.apache.org>
list-unsubscribe: <mailto:users-unsubscribe@httpd.apache.org>
list-post: <mailto:users@httpd.apache.org>
Delivered-To: mailing list users@httpd.apache.org
Received: (qmail 80568 invoked from network); 5 Apr 2002 22:21:51 -0000
Received: from mail2.bcaa.bc.ca (HELO reo.bcaa.bc.ca) (192.197.1.13)
  by daedalus.apache.org with SMTP; 5 Apr 2002 22:21:51 -0000
Received: from gto.bcaa.bc.ca (gto.bcaa.bc.ca [192.197.2.58])
	by reo.bcaa.bc.ca (8.11.3/8.11.3) with ESMTP id g35MLvE21739
	for <users@httpd.apache.org>; Fri, 5 Apr 2002 14:21:57 -0800 (PST)
Received: by gto.bcaa.bc.ca with Internet Mail Service (5.5.2653.19)
	id <GLKDAZY4>; Fri, 5 Apr 2002 14:21:56 -0800
Message-ID: <C9D4682CB7FED41181CB00B0D0AABE4304992B2E@gto.bcaa.bc.ca>
From: Bruce MacDonald <BruceM@bcaa.bc.ca>
To: "'users@httpd.apache.org'" <users@httpd.apache.org>
Subject: RE: 1.3.19 on Solaris7: httpd process owner -- 2 as root?
Date: Fri, 5 Apr 2002 14:21:55 -0800 
MIME-Version: 1.0
X-Mailer: Internet Mail Service (5.5.2653.19)
Content-Type: text/plain;
	charset="iso-8859-1"
X-Spam-Rating: daedalus.apache.org 1.6.2 0/1000/N

Thanks very much Joshua.  I won't worry then.  

FWIW, I opened a TAR with Oracle and the support guy there said his server
had two "root" processes as well, so perhaps it really is normal for the
configuration that comes from Oracle.

Thanks again.

Cheers,
		Bruce

-----Original Message-----
From: Joshua Slive [mailto:joshua@slive.ca]
Sent: April 5, 2002 13:58
To: 'users@httpd.apache.org'
Subject: Re: 1.3.19 on Solaris7: httpd process owner -- 2 as root?



On Thu, 4 Apr 2002, Bruce MacDonald wrote:
> From everything I've read, I should see the initial httpd process owned by
> root and then the server processes owned by Apache.  In fact what I get is
> the initial "root" process, then an "Apache" process ("root" httpd pid +
1),
> then *another* root httpd process ("root" httpd pid + 2), and then however
> many more "Apache" httpd processes.
>
> I haven't seen anything to indicate that this should happen.  Why would
> there be *two* httpd processes owned by root?  Is this a security hole if
I
> put the server into the world this way?

It depends on your configuration.  Various types of supporting programs
may be launched during the initial configuration phase as root.  For
example, piped log programs and RewriteMap programs both get to
be root.

Joshua.


---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org