diff options
| author | Aaron Andersen <aaron@fosslib.net> | 2020-04-25 20:04:05 -0400 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2020-04-25 20:04:05 -0400 |
| commit | 16ab83760f3a69d15322a2adf6c9335abd550904 (patch) | |
| tree | 39f251dedf3c5bad4044fcc266774d622442e0f4 /nixos/doc | |
| parent | a96dc47dd8c7c81c409638e48070c794732ba030 (diff) | |
| parent | 7bc9f24fb646f7b538f84e829427c8d16272e9d8 (diff) | |
Merge pull request #85043 from aanderse/httpd-2020
nixos/httpd: modernize module standards
Diffstat (limited to 'nixos/doc')
| -rw-r--r-- | nixos/doc/manual/release-notes/rl-2009.xml | 19 |
1 files changed, 19 insertions, 0 deletions
diff --git a/nixos/doc/manual/release-notes/rl-2009.xml b/nixos/doc/manual/release-notes/rl-2009.xml index 955c19bd98e6..07f11239366b 100644 --- a/nixos/doc/manual/release-notes/rl-2009.xml +++ b/nixos/doc/manual/release-notes/rl-2009.xml @@ -266,6 +266,25 @@ environment.systemPackages = [ </programlisting> </para> </listitem> + <listitem> + <para> + The httpd web server previously started its main process as root + privileged, then ran worker processes as a less privileged identity user. + This was changed to start all of httpd as a less privileged user (defined by + <xref linkend="opt-services.httpd.user"/> and + <xref linkend="opt-services.httpd.group"/>). As a consequence, all files that + are needed for httpd to run (included configuration fragments, SSL + certificates and keys, etc.) must now be readable by this less privileged + user/group. + </para> + <para> + The default value for <xref linkend="opt-services.httpd.mpm"/> + has been changed from <literal>prefork</literal> to <literal>event</literal>. Along with + this change the default value for + <link linkend="opt-services.httpd.virtualHosts">services.httpd.virtualHosts.<name>.http2</link> + has been set to <literal>true</literal>. + </para> + </listitem> </itemizedlist> </section> |