Apache running as root instead of user specified in httpd.conf

apache-2.2 permissions centos wordpress

Solution 1:

Apache always needs to start as root, then it uses setuid to switch to user context of specified user in httpd.conf.

Without root (uid = 0) you can not create listening socket on privileged ports (below 1024)

For details read this documents:

  • http://www.thegeekstuff.com/2011/03/apache-hardening/

  • http://httpd.apache.org/docs/2.2/misc/security_tips.html

From first link:

# ps -ef | grep -i http | awk '{print $1}'
root
apache
apache
apache
apache
apache

Related

NAS device claims drive in a RAID is degraded but S.M.A.R.T. says it is fine
Completely format server for selling on ebay
tmpfs fills up, although hardly used. How can I debug this
AWS Storage Gateway without the "on-premises" part?
Debian error: ifup: couldn't read interfaces file "/etc/network/interfaces"
What is difference between `Wireless Universal Repeater` and `Wireless Distribution System(WDS)`? [closed]
Apache server-status returning 404, then redirecting to my Wordpress install
Tape backup size versus file retention time
Migrating virtual (VMWare) workstations from AMD to Intel hardware
How long does a PuTTY keyphrase need to be (i.e. how does PuTTY encrypt private keys)
how can I call ruby function basename in puppet
Running two subnets over the same physical LAN