> Is this group archived somewhere? I imagine I''m not the first to
ask
about> this. I am getting the below messages on a fresh (re)install of 3.0-1, I
> assume because of insufficient permissions (currently 600 root:root) but I
> do not know (1) what the proper permissions/ownership should be, (2) the
> implications of improper permissions, or (3) the implications of leaving
it> be (aside from my log filling /var prematurely).
I think it''s archived, but damned if I can remember where :P. root:root
should be fine since the webserver starts as root, reads configs, then binds
and drops priveleges. The files should probably be only read, not
read/write, that should do it. The main issue is obviously someone either
reading/writing it that should not, if they can read your private key, bammo
goes the security, if they can replace it, ditto.
> BTW, I don''t think this happened with the initial install...
I actually stopped using SWS, being in Canada I switched to Apache with
mod-ssl, I find redhat''s packaged up one to be.. well.. inferior :P.
> [Sat Apr 29 05:29:54 2000] [error] mod_ssl: Cannot open SSLSessionCache
DBM> file `/var/cache/ssl_scache'' for reading (fet
> ch) (System error follows)
> [Sat Apr 29 05:29:54 2000] [error] System: Permission denied (errno: 13)
You got me there.
Might interest you to know the LASG is now officially obsolete, the LSKB is
taking it''s place:
http://www.securityportal.com/lskb/
> -Alan Mead
-Kurt