Robin Beech wrote:
> created the log files while logged on as root and the directory
> listing gives
> them as writeable:
>
> drwxr-xr-x 2 root bin 1024 Oct 10 08:51 .
> drwxr-xr-x 5 root bin 1024 Oct 12 08:34 ..
> -rw-r--r-- 1 root bin 0 Oct 10 08:48 access.log
> -rw-r--r-- 1 root bin 0 Oct 10 08:48 cache.log
> -rw-r--r-- 1 root bin 0 Oct 10 08:50 store.log
> I was running squid with:
>
> #cache_effective_user nobody
> #cache_effective_group nogroup
The log directory is only writeable to root, not the user "nobody" which
Squid runs as.
Remove the log files, and change owner of the log directory to nobody
and you should be fine.
rm -rf logs
mkdir logs
chmod 700 logs
chown nobody logs
The same applies to cache directories. First time you start Squid it has
to be empty and owned by the user configured in squid.conf. (cache
directory == cache_dir directory configured in squid.conf).
> Could you explain how I would "run squid as root" to make sure I
> know I'm not making any silly mistakes?
What I meant by "run squid as root" is when you start it as root. Squid
then assumes the user configured in squid.conf.
Another option to configure a user in squid.conf is to always start
Squid as that user. If done from a root run squid then "su nobody -c
/usr/local/squid/bin/RunCache" can be used.
--- Henrik Nordström Spare time Squid hackerReceived on Mon Oct 12 1998 - 14:33:10 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:42:27 MST