j.random.programmer wrote:
> Followup:
> It's clear that everyone thinks this is a
> bad idea. I have to disgree here.
then you need to complain to the apache software foundation as well.
they don't let you run httpd as root. and most probably you need to
complain about qmail, djbdns, pod2html, etc.
> I should be allowed
> to do what I want even if it's a security risk as long
> as that risk is known/explained.
well, you are allowed. just modify the source code. i bet it's not far
than a single line or two.
> It's _not_ an issue
> if I bind the daemon to a ip/interface which is
> guaranteed private and non-routable (such as
> 192.168.x.x) and non-forwardable. Then there is no
> risk.
then clearly you do _not_ know the risks/issues then. you should thank
the postgresql developers for not letting your daemon run as root. :-)
--
dave