openbsd-ports

History

ajacoutot f50fdd748e Stop using the daemon class in @newuser. If we need to make an exception we can do it and properly document the reason but by default we should just use the default login class. rc.d uses daemon or the login class provided in login.conf.d so this has no impact there. discussed with sthen@, tb@ and robert@ praying that my grep/sed skills did not break anything and still believing in portbump :-)		2022-11-08 11:14:43 +00:00
..
DESCR
memcached.rc	drop RCS Ids	2022-03-11 19:38:05 +00:00
PLIST	Stop using the daemon class in @newuser.	2022-11-08 11:14:43 +00:00
README	drop RCS Ids	2022-03-11 19:38:05 +00:00

README

+-----------------------------------------------------------------------
| Running ${PKGSTEM} on OpenBSD
+-----------------------------------------------------------------------

From the upstream documentation, "Memcached does not spend much, if any,
effort in ensuring its defensibility from random internet connections.
So you must not expose memcached directly to the internet, or otherwise
any untrusted users. Using SASL authentication here helps, but should
not be totally trusted."

The default setting in this package is now to listen on localhost only.
If you need it to listen on the network, change the flags, and make sure
that the memcached port (default 11211) is firewalled.

# rcctl set memcached flags '-u _memcached'

To change to listening on a unix socket (local machine only) and allowing
access only from members of group _memcached:

# rcctl set memcached flags '-u _memcached -s /var/run/memcached/sock -a 0660'