diff options
authorKees Monshouwer <mind04@monshouwer.org>2013-08-26 16:38:51 +0200
committermind04 <mind04@monshouwer.org>2013-08-26 16:38:51 +0200
commit7600fd3b235f8d84f22bb40f323b1fafd7236723 (patch)
parent.gitignore changes (diff)
doc update, mod_ruid2 is using Linux capabilities
1 files changed, 2 insertions, 2 deletions
diff --git a/README b/README
index 6e8c426..3a4147c 100644
--- a/README
+++ b/README
@@ -1,7 +1,7 @@
mod_ruid2 is a suexec module for apache 2.0, 2.2 and 2.4, based on mod_ruid and mod_suid2
--it runs only on linux because afaik only linux has implemented posix 1003.1e capabilities
+-it runs only on Linux because only the Linux kernel has implemented the required process capabilities.
-it has better performance than mod_suid2 because it doesn`t need to kill httpd children
after one request. it makes use of kernel capabilites and after receiving a new request suids again.
-there are some security issues, for instance if attacker successfully exploits the httpd process,
@@ -29,7 +29,7 @@ CONFIGURE OPTIONS:
RMinUidGid user|#uid group|#gid - when uid/gid is < than min uid/gid set to default uid/gid
RDefaultUidGid user|#uid group|#gid
- RGroups group1 group2 - aditional groups set via setgroups
+ RGroups group1 group2 - additional groups set via setgroups
@none - clear all previous defined groups.
RDocumentChrRoot - Set chroot directory and the document root inside