Date: Wed, 28 Jul 1999 18:35:56 +0300 From: "Andy V. Oleynik" <andyo@prime.net.ua> To: Ryan Thompson <freebsd@sasknow.com> Cc: freebsd-questions@FreeBSD.ORG Subject: Re: Samba security questions Message-ID: <379F235C.17786C4@prime.net.ua> References: <Pine.BSF.4.10.9907280834470.730-100000@sasknow.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Ryan Thompson wrote: > On Wed, 28 Jul 1999, Andy V. Oleynik wrote: > > Ryan Thompson wrote: > > > all the files in my Apache server root :-) Instead, I've done a chown > > > nobody and left the access permissions alone. > > > > Bad idea. > > Somehow, Andy, I think I new that. I bet I just chose not to believe it > :-) > > > > My question... Is there any real or implied security risk inherent in > > > having all www data owned by nobody, as far as Apache is concerned? > > > > > > > web tree must be owned by root but the few subtrees which can be owned by > > real users on ur host to allow them update their pages if latter are placed > > in web tree. > > > > WBW Andy V. Oleynik (When U work in virtual office > > prime.net.ua's U have good chance to obtain > > system administrator virtual money ö%-) > > +380442448363 > > > > So, we return to my original question (which, now that I look back on it, > seems to have faded into obscurity somewhere in my last message)... How > can I enable Samba to run itself as a priviliged user when connections are > made? Doing so would eliminate a lot of grief on my end, that's for sure > :) I'm not just concerned about the web tree.. It would be nice to have > access to ALL files on the server from my other machine. > To run samba as root just run smbd/nmbd from the startup scripts in standalone mode. Also U have to connect to ur shares as registered on samba-host user. man 5 smb.conf. > > Virtually yours, > Ryan Thompson -- WBW Andy V. Oleynik (When U work in virtual office prime.net.ua's U have good chance to obtain system administrator virtual money ö%-) +380442448363 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?379F235C.17786C4>