Newsgroups: php.internals
Path: news.php.net
Xref: news.php.net php.internals:79316
Return-Path: <remi@fedoraproject.org>
Mailing-List: contact internals-help@lists.php.net; run by ezmlm
Delivered-To: mailing list internals@lists.php.net
Received: (qmail 275 invoked from network); 30 Nov 2014 08:44:15 -0000
Received: from unknown (HELO lists.php.net) (127.0.0.1)
  by localhost with SMTP; 30 Nov 2014 08:44:15 -0000
Authentication-Results: pb1.pair.com header.from=remi@fedoraproject.org; sender-id=unknown
Authentication-Results: pb1.pair.com smtp.mail=remi@fedoraproject.org; spf=permerror; sender-id=unknown
Received-SPF: error (pb1.pair.com: domain fedoraproject.org from 217.70.183.195 cause and error)
X-PHP-List-Original-Sender: remi@fedoraproject.org
X-Host-Fingerprint: 217.70.183.195 relay3-d.mail.gandi.net  
Received: from [217.70.183.195] ([217.70.183.195:49020] helo=relay3-d.mail.gandi.net)
	by pb1.pair.com (ecelerity 2.1.1.9-wez r(12769M)) with ESMTP
	id 65/40-28554-DD8DA745 for <internals@lists.php.net>; Sun, 30 Nov 2014 03:44:14 -0500
Received: from mfilter38-d.gandi.net (mfilter38-d.gandi.net [217.70.178.169])
	by relay3-d.mail.gandi.net (Postfix) with ESMTP id B1127A80BB
	for <internals@lists.php.net>; Sun, 30 Nov 2014 09:44:10 +0100 (CET)
X-Virus-Scanned: Debian amavisd-new at mfilter38-d.gandi.net
Received: from relay3-d.mail.gandi.net ([217.70.183.195])
	by mfilter38-d.gandi.net (mfilter38-d.gandi.net [10.0.15.180]) (amavisd-new, port 10024)
	with ESMTP id E1fLbCHk5Tyw for <internals@lists.php.net>;
	Sun, 30 Nov 2014 09:44:09 +0100 (CET)
X-Originating-IP: 82.241.130.121
Received: from schrodingerscat.famillecollet.com (pom51-2-82-241-130-121.fbx.proxad.net [82.241.130.121])
	(Authenticated sender: contact@ll-experts.com)
	by relay3-d.mail.gandi.net (Postfix) with ESMTPSA id 39998A80C8
	for <internals@lists.php.net>; Sun, 30 Nov 2014 09:44:09 +0100 (CET)
Message-ID: <547AD8D8.9060603@fedoraproject.org>
Date: Sun, 30 Nov 2014 09:44:08 +0100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Thunderbird/31.2.0
MIME-Version: 1.0
To: "internals@lists.php.net" <internals@lists.php.net>
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: quoted-printable
Subject: Feature: use Posix ACL for FPM socket
From: remi@fedoraproject.org (Remi Collet)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi,

Please see and comment on https://bugs.php.net/68526

In this proposal, this is an optional feature:

- - new build option: --with-fpm-acl

=3D> no change for standard build

- - new config options: listen.users and listen.groups

=3D> no change for existing configuration

ACL are set when listen.users or listen.groups are configured,
else chown to listen.owner / listen.group is still used.

Notice: chown only work when running as root (standard config), while
ACL are also available for standard users.


Comment / feedback are very welcome.

This seems to be a small self contained feature.
I'd like to be able to implement this in 5.6+

Is a RFC needed ?


Remi.


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iEYEARECAAYFAlR62NgACgkQYUppBSnxahgKUQCfUr1k6Zg2t9whhgVJbWKWU6Gd
OdAAoJ1TlJ9Z9Rgcg3vfy4Q9rKWsrfXk
=3DTJRJ
-----END PGP SIGNATURE-----