Re: [Zope] Starting Zope

2000-08-08 Thread Otto Hammersmith
Cary O'Brien wrote: I've done it this way: http://www.zope.org/Members/otto/portfw [snip] How can this work? Won't Zope put a "base href=http://server:8080" tag into the head of the document and mess things up? Won't you need site-access to work around this? -- cary You're

Re: [Zope] Starting Zope

2000-07-31 Thread Cary O'Brien
Bill wrote... Of course, it is entirely possible the user meant something other than s/he wrote. ;) But that last one doesn't seem to indicate that. To put it succinctly: If you want Zope to bind to port 80 on *nix you have few options: o Change Zope to run SID ** Bad Idea o

Re: [Zope] Starting Zope

2000-07-31 Thread Cary O'Brien
Interesting argument. However, consider this: if you completely trust your 'firewalled' box, then why not run the web server as root? One response, Protection of the system from simple mistakes by trusted users? Also root can do a lot more, such as putting interfaces into promiscious mode.

Re: [Zope] Starting Zope

2000-07-31 Thread Costagliola Giovanni
Hello I'm the man who generate this jungly mailing Simply, I use thesescripts: ---/usr/local/scripts/zstart- #!/bin/bash $ZOPE_BASE/start -u $ZOPE_USER -w 80 1/dev/null 21 --- the previous is

Re: [Zope] Starting Zope

2000-07-31 Thread Otto Hammersmith
I've done it this way: http://www.zope.org/Members/otto/portfw It's also relatively easy to convince a hosting provider to add this, as long as you have a dedicated IP address. Perhaps I should have done a news item when I created this... seems a lot of people have hacked around the issue is

Re: [Zope] Starting Zope

2000-07-31 Thread Cary O'Brien
I've done it this way: http://www.zope.org/Members/otto/portfw It's also relatively easy to convince a hosting provider to add this, as long as you have a dedicated IP address. Perhaps I should have done a news item when I created this... seems a lot of people have hacked around the

[Zope] OT: Unix Permissions (was Re: [Zope] Starting Zope)

2000-07-31 Thread Bill Anderson
Cary O'Brien wrote: [...] in your case is the fact that you mention your trust on users(humans are the most easy to compromise, however that argument is a bit OT). However, do you trust all of your webserver code? Do you trust your cgi-bin scripts and applications? And by trust I not

Re: [Zope] Starting Zope

2000-07-30 Thread Bill Anderson
Nitesh Dhanjani wrote: yes, but it would solve the permission problem the original poster mentioned. No, because the orignal user wanted to _start_ Zope as user zope. Unless that user has a UID/GID of 0 (is, is root by another name), the file permissions are irrelevant. Now, as to

Re: [Zope] Starting Zope

2000-07-30 Thread Nitesh Dhanjani
I receive an error becouse root hasn't granted the need privileges on /Zope/var/ directory. That is what i was responding to. I am aware of the facts you mention regarding the 3 points you make below, and agree with them. nitesh. On Sun, 30 Jul 2000, Bill Anderson wrote: Nitesh

Re: [Zope] Starting Zope

2000-07-30 Thread Cary O'Brien
Cary O'Brien wrote: Well... If you are running on Linux you could simply edit the kernel code to elimitate the check on being root to bind to low ports. That's what we did. Which is an even worse idea. Why? On a sufficiently firewalled off box, where the few logins are

Re: [Zope] Starting Zope

2000-07-30 Thread Nitesh Dhanjani
Interesting argument. However, consider this: if you completely trust your 'firewalled' box, then why not run the web server as root? One response, in your case is the fact that you mention your trust on users(humans are the most easy to compromise, however that argument is a bit OT). However,

Re: [Zope] Starting Zope

2000-07-30 Thread Bill Anderson
(Quoting reversed for sake of continuity. On Sun, 30 Jul 2000, Cary O'Brien wrote: Cary O'Brien wrote: Well... If you are running on Linux you could simply edit the kernel code to elimitate the check on being root to bind to low ports. That's what we did.

RE: [Zope] Starting Zope

2000-07-30 Thread Chris McDonough
e argument for the hack is backwards compatibility, any other explanation usually ends up as rationalization or circular logic. My $.02. -Original Message- From: Bill Anderson [mailto:[EMAIL PROTECTED]] Sent: Sunday, July 30, 2000 5:04 PM To: [EMAIL PROTECTED] Subject: Re: [Zope] Sta

Re: [Zope] Starting Zope

2000-07-29 Thread Cary O'Brien
Costagliola Giovanni wrote: Il gio, 27 lug 2000, Oleg Broytmann ha scritto: On Thu, 27 Jul 2000, Costagliola Giovanni wrote: How can I to start Zope whit a different user than root and cath the default HTTP port? Use different way - start Zope as root, catch port 80

Re: [Zope] Starting Zope

2000-07-29 Thread Bill Anderson
Cary O'Brien wrote: Well... If you are running on Linux you could simply edit the kernel code to elimitate the check on being root to bind to low ports. That's what we did. Which is an even worse idea. -- Do not meddle in the affairs of sysadmins, for they are easy to annoy, and have

Re: [Zope] Starting Zope

2000-07-29 Thread Nitesh Dhanjani
chown the var directory to the zope user. This is what I do with my setup. On Sat, 29 Jul 2000, Cary O'Brien wrote: Costagliola Giovanni wrote: Il gio, 27 lug 2000, Oleg Broytmann ha scritto: On Thu, 27 Jul 2000, Costagliola Giovanni wrote: How can I to start Zope whit

Re: [Zope] Starting Zope

2000-07-29 Thread Bill Anderson
Nitesh Dhanjani wrote: chown the var directory to the zope user. This is what I do with my setup. That will not let you bind to ports 1024. -- Do not meddle in the affairs of sysadmins, for they are easy to annoy, and have the root password.

Re: [Zope] Starting Zope

2000-07-29 Thread Nitesh Dhanjani
yes, but it would solve the permission problem the original poster mentioned. On Sat, 29 Jul 2000, Bill Anderson wrote: Nitesh Dhanjani wrote: chown the var directory to the zope user. This is what I do with my setup. That will not let you bind to ports 1024. -- Do not

Re: [Zope] Starting Zope

2000-07-27 Thread Oleg Broytmann
On Thu, 27 Jul 2000, Costagliola Giovanni wrote: How can I to start Zope whit a different user than root and cath the default HTTP port? Use different way - start Zope as root, catch port 80 and drop uid. I receive an error becouse root hasn't granted the need privileges on

Re: [Zope] Starting Zope

2000-07-27 Thread Costagliola Giovanni
Il gio, 27 lug 2000, Oleg Broytmann ha scritto: On Thu, 27 Jul 2000, Costagliola Giovanni wrote: How can I to start Zope whit a different user than root and cath the default HTTP port? Use different way - start Zope as root, catch port 80 and drop uid. I receive an error

Re: [Zope] Starting Zope on FreeBSD 2.2.8---Python dumps core

2000-06-23 Thread Andrew Kenneth Milton
+[ Loren M. McCarter ]- | I'm having difficulty starting Zope. | | Versions: | Zope: 2.1.6, compiled from source with "python wo_pcgi.py" | Python: 1.5.2, (#2, Jan 17 2000) [GCC 2.7.2.1] on freebsd2 | Python is compiled with