Re: Re[2]: How to allow httpd to run 'ipfw table 7 add ... '

2012-11-30 Thread Steve O'Hara-Smith
On Thu, 29 Nov 2012 23:03:08 +0200 Eugen Konkov kes-...@yandex.ru wrote: Здравствуйте, Steve. SOHS The only problem with this is it will allow apache to SOHS do anything with ipfw including flush all of the rules. I would SOHS suggest having apache dumping the parameters of the

How to allow httpd to run 'ipfw table 7 add ... '

2012-11-28 Thread Eugen Konkov
Hi. How to allow httpd to run this command 'ipfw table 7 add ... '? -- Eugen mailto:kes-...@yandex.ru ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To

Re: How to allow httpd to run 'ipfw table 7 add ... '

2012-11-28 Thread Devin Teske
On Nov 28, 2012, at 7:48 PM, Eugen Konkov wrote: Hi. How to allow httpd to run this command 'ipfw table 7 add ... '? imho the most secure way is to add an entry to sudoers(5) (you can use visudo(8) to edit sudoers(5)) allowing the apache privilege-separation user (www? we use apache