[squid-users] Re: Squid Ip Spoofing

From: Henrik Nordstrom <hno@dont-contact.us>
Date: 15 May 2003 11:46:33 +0200

tor 2003-05-15 klockan 07.05 skrev Pramod Bhandiwad:
> Thanks for responding Henrik.We are running squid as root.So I guess hacking
> the kernel to allow non root applications to bind to non local ip's is not
> necessary.
> Please suggest.

Only if you have hacked Squid not to change user id.. by default Squid
always changes to a non-privileged user upon startup, and refuses to
start if it can't.

Modifying the kernel to allow Squid running as a non-privileged user to
initiate foreign sessions is strongly recommended in favor of modifying
Squid to run as root..

Regards
Henrik

-- 
Donations welcome if you consider my Free Squid support helpful.
https://www.paypal.com/xclick/business=hno%40squid-cache.org
Please consult the Squid FAQ and other available documentation before
asking Squid questions, and use the squid-users mailing-list when no
answer can be found. Private support questions is only answered
for a fee or as part of a commercial Squid support contract.
If you need commercial Squid support or cost effective Squid and
firewall appliances please refer to MARA Systems AB, Sweden
http://www.marasystems.com/, info@marasystems.com
Received on Thu May 15 2003 - 03:47:53 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:16:41 MST