Re: [squid-users] Unable to open configuration file

From: Colin Campbell <sgcccdc@dont-contact.us>
Date: Mon, 14 Jan 2002 09:11:15 +1000 (EST)

Hi,

On Fri, 11 Jan 2002, Henrik Nordstrom wrote:

> Colin Campbell wrote:
>
> > Where does it say that? I found one paragraph that says ...
> >
> > In Chapter 4 we go through the process of changing the user-id
> > that Squid runs as, so that files Squid creates are owned by the
> > squid user-id, and by the group squid. Binaries are owned by root,
> > and config files are changeable by the squidadm group.
> >
> > So, yes, binaries or executables are owned by root, but config files
> > should be owned by 'squid' and be writable by group 'squidadm'.
>
> I strongly disagree here. config files should not be writable by squid,
> only the cache and log directories should be writable (and owned) by
> squid. See any UNIX sysadmin book on rules on how to design permission
> schemes.

I was merely quoting the uSer Guide, not passing a personal opinion. If
the User Guide is incorrect, it should be corrected by someone who knows
what the correct ownerships and permissions should be. This thread started
because Alex was having problems on a restart after following the User
Guide to set permissions and onwership of files.

> If your OS does not support saved user ID:s then "squid -k reconfigure"
> may be unreliable. In such case, use "squid -k restart" instead.

I believe he's running Linux.

Colin
Received on Sun Jan 13 2002 - 16:11:40 MST

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:05:50 MST