Forum OpenACS Q&A: nasty little fix

Collapse
8: nasty little fix (response to 1)
Posted by Hans Gaasenbeek on
Had to put this in /etc/sudoers:

localhost:~# more /etc/sudoers
# sudoers file.
#
# This file MUST be edited with the 'visudo' command as root.
#
# See the man page for details on how to write a sudoers file.
#

# Host alias specification

# User alias specification

# Cmnd alias specification

# User privilege specification
root    ALL=(ALL) ALL
service0 ALL= NOPASSWD: ALL

Probably, there is a better way, e.g. only allowing certain commands, but I am not sure how to do it. I have not the time to read endless manuals before I can start aolserver automagically...

Collapse
9: Re: nasty little fix (response to 8)
Posted by Bart Teeuwisse on
Hans,

It is very well possible to run AOLserver with daemontools on port 80. I do it all the time. Probably a configuration issue on your end.

/Bart

Collapse
10: Re: nasty little fix (response to 9)
Posted by Joel Aufrecht on
https://openacs.org/doc/openacs-5-0-0/openacs.html

"If you want to use port 80, there are complications. First, AOLserver must be root to use system ports such as 80, but refuses to run as root for security reasons. Thus you must start as root and specify a non-root user ID and Group ID which AOLserver will switch to after claiming the port. To do so, find the UID and GID of the service0 user via grep service0  /etc/passwd and then put those numbers into the command line via -u 501 -g 502. Second, if you are root then killall will affect all OpenACS services on the machine, so if there's more than one you'll have to do ps -auxw | grep nsd and selectively kill by job number."

Collapse
11: Re: nasty little fix (response to 10)
Posted by Guan Yang on
pgrep -fl and pkill -fl are your friends.
Collapse
18: Re: nasty little fix (response to 10)
Posted by Hans Gaasenbeek on
Yes, I read that, and, yes, I tried it but, no, that does not do the trick.