trafficserver and raw disk access in FreeBSD
Wojciech Puchar
wojtek at wojtek.tensor.gdynia.pl
Mon Jul 23 07:41:50 UTC 2012
> yeah, rules in devfs always work. and it may introduce more challenge on
> operation management, is there any way that we can do it more clean?
what challenges?
>
> should we set the permission for :operator g+w on disks and partitions?
you still may just do chown/chmod
> then we can put a dedicate user for trafficserver into operator group.
>
>
> ? 2012-07-22?? 17:03 +0200?Wojciech Puchar???
>>> Apache Traffic Server may use raw disk for caching, and for privilege
>>> elevation, the worker process(traffic_server) will setuid to nobody, my
>>> question is, how to make traffic_server access the /dev/ada*?
>>>
>>> in linux, disk permitting is root:disk 0660, we can go with:
>>> 1, setup a new user 'ats', and put it into 'disk' group
>>> 2, after setuid, run initgroups() to complete the groups evn.
>>
>> devfs.conf
>
> --
> zym, Zhao Yongming.
> aka: yonghao @ taobao.com
>
More information about the freebsd-hackers
mailing list