-
Notifications
You must be signed in to change notification settings - Fork 7
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Zoneminder issue when caddy runs as root #13
Comments
If binding to port 80 is your only reason for running as root, you should look into |
I have other reason, like security. Possible to set the uid/gid for the cgi process maybe? Maybe run caddy as root then switch to www? I’m on FreeBSD btw |
Security should be higher when not run as root.
Not without bigger rework or less code-reuse. The
Not that I am aware of. I think in the age of containers and cgroups, there is simply no good reason to trust a process with forking itself into a lesser-priviledged child process. So IMO you have these options:
|
Excellent. |
This plug-in seems to work fine when caddy is running as the www user.
But when caddy runs as root, the streams cut in and out.
I want to run caddy as root in order to bind port 80
{"level":"info","ts":1691180819.7048585,"msg":"cgi: bogus
header line: HTTP/1.0 200 OK"}
{"level":"info","ts":1691180821.219545,"msg":"cgi: copy e
rror: write tcp 192.168.1.156:8000->192.168.1.188:56076:
write: broken pipe"}
This is the error that keeps happening.
The text was updated successfully, but these errors were encountered: