Why "user" directive is not effective for master process?
Cliff Wells
cliff at develix.com
Thu Dec 16 08:33:11 MSK 2010
On Thu, 2010-12-16 at 06:26 +0300, Maxim Dounin wrote:
> If you want master to be non-root you are free to start it as
> normal user. Though you may need some OS tuning to allow it to bind
> to privileged ports in this case (not sure if Linux will be able
> to do this securely).
setcap 'cap_net_bind_service=+ep' /usr/bin/nginx
http://www.kernel.org/doc/man-pages/online/pages/man7/capabilities.7.html
Only works on kernels >= 2.6.24
Cliff
--
Cliff Wells <cliff at develix.com>
More information about the nginx
mailing list