Re: www-data policy?

To: debian-policy@lists.debian.org
Subject: Re: www-data policy?
From: John Goerzen <jgoerzen@progenylinux.com>
Date: 18 Aug 2000 13:37:39 -0500
Message-id: <[🔎] sa7n1ia2z64.fsf@indy.progenylinux.com>
In-reply-to: Manoj Srivastava's message of "18 Aug 2000 01:10:24 -0500"
References: <[🔎] sa7og2ra4iy.fsf@indy.progenylinux.com> <[🔎] 87ya1vyu9b.fsf@glaurung.green-gryphon.com>

Perhaps I ought to frame the question more concretely, then.  I am
packaging up gopherd.  I am not entirely sure what needs to be done to
it wrt users it runs as.

One could argue it should run as www-data.  Roxen apparently includes
a gopher server and it presumably runs as www-data.  There exist other
combined http&gopher servers as well.

One could also argue that it should create a gopher system user and
use that.  I like this approach because it increased
compartmentalization in the system.  With http processes running CGI
scripts and gopher running its own equivolent of them, there is
certainly the possibility for errant or insecure scripts in one area
to cross over to the other.

Additionally, I am unsure of the mechanics of www-data usage.
base-passwd states that www-data is special cased in the package,
without stating what packages that use it should do.

Thoughts?

Manoj Srivastava <srivasta@debian.org> writes:

> >>"John" == John Goerzen <jgoerzen@progenylinux.com> writes:
> 
>  John> I know there is a www-data policy somewhere, but I can't seem to find
>  John> it in any policy document.  Can someone tell me where to look?
> 
> 	I have a vague recollection of it being put together by the
>  maintainer of one of the httpd packages, and that the sentiment at
>  that time was against putting it into the policy package. 
> 
> 	I can't seem to find a copy, though I thought I had saved a
>  version. 
> 
> 	manoj
> -- 
>  The explanation requiring the fewest assumptions is the most likely
>  to be correct. William of Occam
> Manoj Srivastava   <srivasta@debian.org>  <http://www.debian.org/%7Esrivasta/>
> 1024R/C7261095 print CB D9 F4 12 68 07 E4 05  CC 2D 27 12 1D F5 E8 6E
> 1024D/BF24424C print 4966 F272 D093 B493 410B  924B 21BA DABB BF24 424C
> 
> 
> --  
> To UNSUBSCRIBE, email to debian-policy-request@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
> 

-- 
John Goerzen <jgoerzen@complete.org>                       www.complete.org
Sr. Software Developer, Progeny Linux Systems, Inc.    www.progenylinux.com
#include <std_disclaimer.h>                     <jgoerzen@progenylinux.com>

Reply to:

References:
- www-data policy?
  - From: John Goerzen <jgoerzen@progenylinux.com>
- Re: www-data policy?
  - From: Manoj Srivastava <srivasta@debian.org>

Prev by Date: Re: www-data policy?
Next by Date: Re: FHS compliance (was Re: Intent To Split: netbase)
Previous by thread: Re: www-data policy?
Next by thread: Bug#69424: [PATCH] typos in menu-policy.sgml
Index(es):
- Date
- Thread