On Friday 13 Feb 2015 at 11:06, Priya Agarwal wrote:
> So sorry. In squid.conf I had done cache_effective_user to nobody and set
> permissions of /var and /usr to nobody. So those are the permissions.
Are you saying that /var is owned by 'nobody'?
That sounds like a problem for the system to me. /var should be owned by
root; if you want to have subdirectories owned by 'nobody', or with
permissions to let 'nobody' write to them, that's okay, but I think /var being
owned by 'nobody' will cause more problems than just for squid.
> root@t4240qds:/var/logs# ls -al /var/logs/access.log
> ls: cannot access /var/logs/access.log: No such file or directory
> root@t4240qds:/var/logs# ls -ld /var/logs
> drwx------ 2 nobody nogroup 4096 Feb 13 11:49 /var/logs
Maybe someone more familiar with squid than I am can comment on this, but
isn't the log file opened before squid drops its privileges (same as the
network sockets), so you don't actually need the logfile path to be writable
by the squid_effective_user?
Regards,
Antony.
--
All generalisations are inaccurate.
Please reply to the list;
please *don't* CC me.
_______________________________________________
squid-users mailing list
squid-users@xxxxxxxxxxxxxxxxxxxxx
http://lists.squid-cache.org/listinfo/squid-users
