The latest release of YAWS, compared with the versions in Portage at the moment, 1.58 and 1.56, fixes the DoS (bug #159602) and weird eacces problems (bug #165275). Since 1.60, however, the ability to drop root privileges after opening a privileged port has been dropped. One solution is to run a reverse proxy like pound or nginx on port 80 and proxy traffic to the non-privileged port YAWS is running on. The other option is to use fd_server[1]. My attempts so far at rewriting the makefile of the latter using autotools and sticking it into an ebuild have been so far unsuccessful[2]. 1. http://yaws.hyber.org/wiki/showPage.yaws?node=fdserver 2. http://www.erlang.org/pipermail/erlang-questions/2007-February/025280.html
And it still has no maintainer. No reason to have yet another 'we need a fixed version' bug open. *** This bug has been marked as a duplicate of bug 159602 *** *** This bug has been marked as a duplicate of bug 159602 ***
Created attachment 111936 [details] yaws-1.68.ebuild