1================= 2Security Features 3================= 4 5------------ 6Module: core 7------------ 8 9:Author: Jan Kneschke 10:Date: $Date: 2004/08/29 09:44:53 $ 11:Revision: $Revision: 1.2 $ 12 13:abstract: 14 lighttpd was developed with security in mind ... 15 16.. meta:: 17 :keywords: lighttpd, security 18 19.. contents:: Table of Contents 20 21Description 22=========== 23 24Limiting POST requests 25---------------------- 26 27 28 29:: 30 31 server.max-request-size = <kbyte> 32 33System Security 34--------------- 35 36Running daemons as root with full privileges is a bad idea in general. 37lighttpd runs best without any extra privileges and runs perfectly in chroot. 38 39Change Root 40``````````` 41 42server.chroot = "..." 43 44Drop root privileges 45```````````````````` 46 47server.username = "..." 48server.groupname = "..." 49 50FastCGI 51``````` 52 53fastcgi + chroot 54 55Permissions 56``````````` 57 58:: 59 60 $ useradd wwwrun ... 61