How do I lock down nginx on debian wheezy (running systemd)?

nginx debian systemd

Solution 1:

The master process has to be run as root, otherwise nginx won't be able to bind to port 80, as this is a privileged port.

http://www.w3.org/Daemon/User/Installation/PrivilegedPorts.html

You should instead make sure that the worker processes use a different user. This user can be specified in your nginx.conf.

Related

How to avoid specifying full path in sudoers file?
Serial Over Lan doesn't redirect OS terminal
Putty: Incoming Packet was garbled on decryption
Software VPN connection to Amazon AWS VPC private instance [closed]
To zero pad hostnames or not?
Is there any CLI tool to connect to MySQL server using a URL (mysql://xxx)?
How can I test for BadUSB vulnerability?
Matching Serial to OS Edition
How to set Nginx ignore Pragma: no-cache
View full program command line arguments in OOM killer logs
How does apache use or allow browsing of /usr/share? (linux / Ubuntu)
nginx recv() failed (104: Connection reset by peer) while reading response header from upstream