Merge pull request #85043 from aanderse/httpd-2020

nixos/httpd: modernize module standards
author: Aaron Andersen <aaron@fosslib.net> 2020-04-25 20:04:05 -0400
committer: GitHub <noreply@github.com> 2020-04-25 20:04:05 -0400
commit: 16ab83760f3a69d15322a2adf6c9335abd550904 (patch)
tree: 39f251dedf3c5bad4044fcc266774d622442e0f4 /nixos/doc/manual
parent: a96dc47dd8c7c81c409638e48070c794732ba030 (diff)
parent: 7bc9f24fb646f7b538f84e829427c8d16272e9d8 (diff)
download: nixlib-16ab83760f3a69d15322a2adf6c9335abd550904.tar
nixlib-16ab83760f3a69d15322a2adf6c9335abd550904.tar.gz
nixlib-16ab83760f3a69d15322a2adf6c9335abd550904.tar.bz2
nixlib-16ab83760f3a69d15322a2adf6c9335abd550904.tar.lz
nixlib-16ab83760f3a69d15322a2adf6c9335abd550904.tar.xz
nixlib-16ab83760f3a69d15322a2adf6c9335abd550904.tar.zst
nixlib-16ab83760f3a69d15322a2adf6c9335abd550904.zip
1 files changed, 19 insertions, 0 deletions
diff --git a/nixos/doc/manual/release-notes/rl-2009.xml b/nixos/doc/manual/release-notes/rl-2009.xml
index 955c19bd98e6..07f11239366b 100644
--- a/nixos/doc/manual/release-notes/rl-2009.xml
+++ b/nixos/doc/manual/release-notes/rl-2009.xml
@@ -266,6 +266,25 @@ environment.systemPackages = [
 </programlisting>
     </para>
    </listitem>
+   <listitem>
+    <para>
+     The httpd web server previously started its main process as root
+     privileged, then ran worker processes as a less privileged identity user.
+     This was changed to start all of httpd as a less privileged user (defined by
+     <xref linkend="opt-services.httpd.user"/> and
+     <xref linkend="opt-services.httpd.group"/>). As a consequence, all files that
+     are needed for httpd to run (included configuration fragments, SSL
+     certificates and keys, etc.) must now be readable by this less privileged
+     user/group.
+    </para>
+    <para>
+     The default value for <xref linkend="opt-services.httpd.mpm"/>
+     has been changed from <literal>prefork</literal> to <literal>event</literal>. Along with
+     this change the default value for
+     <link linkend="opt-services.httpd.virtualHosts">services.httpd.virtualHosts.&lt;name&gt;.http2</link>
+     has been set to <literal>true</literal>.
+    </para>
+   </listitem>
   </itemizedlist>
  </section>
author	Aaron Andersen <aaron@fosslib.net>	2020-04-25 20:04:05 -0400
committer	GitHub <noreply@github.com>	2020-04-25 20:04:05 -0400
commit	16ab83760f3a69d15322a2adf6c9335abd550904 (patch)
tree	39f251dedf3c5bad4044fcc266774d622442e0f4 /nixos/doc/manual
parent	a96dc47dd8c7c81c409638e48070c794732ba030 (diff)
parent	7bc9f24fb646f7b538f84e829427c8d16272e9d8 (diff)
download	nixlib-16ab83760f3a69d15322a2adf6c9335abd550904.tar nixlib-16ab83760f3a69d15322a2adf6c9335abd550904.tar.gz nixlib-16ab83760f3a69d15322a2adf6c9335abd550904.tar.bz2 nixlib-16ab83760f3a69d15322a2adf6c9335abd550904.tar.lz nixlib-16ab83760f3a69d15322a2adf6c9335abd550904.tar.xz nixlib-16ab83760f3a69d15322a2adf6c9335abd550904.tar.zst nixlib-16ab83760f3a69d15322a2adf6c9335abd550904.zip