Dan Weber <[EMAIL PROTECTED]> said: > Since we don't have anything that needs root, we should not be using > it. MySQL, Apache, and Postfix are storing user access passwords in > logs. They need their logs to be owned by root. Otherwise, an > attacker could gain all sorts of access with their logs. Apache also > uses it for its reload stuff. Its best to not take chances, when you > don't need to take them. >
The child processes need to attach to privileged ports. Doesn't that require a parent process that starts them off with root privs so that they can bind? Aaron
