[Twisted-Python] twistd --uid and --logfile

Phil Mayers p.mayers at imperial.ac.uk
Wed Aug 18 11:35:29 EDT 2010


On 18/08/10 10:25, twisted-web at udmvt.ru wrote:

> I think --uid option is too dangerous.
> sudo or su or setuidgid (from http://cr.yp.to/daemontools.html) is more
> appropriate for changing uids.

In all cases? I think not.

> It will always be hard to design application, that opens some files or
> sockets and only then changes it's uids/gids.

What about a daemon that needs to listen on ports <1024?

Sure it's hard and needs care. twistd may be doing it wrong at the 
moment. But it should be quite possible to fix that. "sudo" and "su" 
don't do anything magical. Nor does "apache", or any one of the hundreds 
of daemons that open sockets then setuid.



More information about the Twisted-Python mailing list