On Thu, May 13, 2004 at 01:19:14PM +0200, Ilja Booij wrote: > Dan Weber wrote: > >>I've just checked on a webserver: > >>the 'root' apache process also is in state LISTEN and runs as root. So I > >>guess that's the way its' supposed to be. I presume Apache would be > >>doing The Right Thing.
Its not the right thing. It is probably a different scenario with apache. However, nothing besides apache has a root parent process. Dovecot another pop/imap server was written very securely. Same goes for postfix. Neither ever have a root parent process. You also may be able to have a root process if its something like http which is fairly secure as long as webdav isn't enabled. Information is really only coming one way, whereas imap it goes both, and same for any smtp. -- Dan Weber NOTE: postfix's author is known for his very secure programs.
signature.asc
Description: Digital signature
