diff options
Diffstat (limited to 'data/lighttpd/lighttpd-1.4.53/doc/outdated/security.txt')
-rw-r--r-- | data/lighttpd/lighttpd-1.4.53/doc/outdated/security.txt | 60 |
1 files changed, 60 insertions, 0 deletions
diff --git a/data/lighttpd/lighttpd-1.4.53/doc/outdated/security.txt b/data/lighttpd/lighttpd-1.4.53/doc/outdated/security.txt new file mode 100644 index 000000000..766fd3483 --- /dev/null +++ b/data/lighttpd/lighttpd-1.4.53/doc/outdated/security.txt @@ -0,0 +1,60 @@ +================= +Security Features +================= + +------------ +Module: core +------------ + +:Author: Jan Kneschke +:Date: $Date: 2004/08/29 09:44:53 $ +:Revision: $Revision: 1.2 $ + +:abstract: + lighttpd was developed with security in mind ... + +.. meta:: + :keywords: lighttpd, security + +.. contents:: Table of Contents + +Description +=========== + +Limiting POST requests +---------------------- + + + +:: + + server.max-request-size = <kbyte> + +System Security +--------------- + +Running daemons as root with full privileges is a bad idea in general. +lighttpd runs best without any extra privileges and runs perfectly in chroot. + +Change Root +``````````` + +server.chroot = "..." + +Drop root privileges +```````````````````` + +server.username = "..." +server.groupname = "..." + +FastCGI +``````` + +fastcgi + chroot + +Permissions +``````````` + +:: + + $ useradd wwwrun ... |