Date: Mon, 10 Feb 2003 12:09:20 -0600 From: Kim Scarborough <sluggo@unknown.nu> To: Doug Barton <DougB@FreeBSD.org> Cc: ports@FreeBSD.org Subject: Re: Problems with new port Message-ID: <3E47EAD0.5040600@unknown.nu> In-Reply-To: <20030210095104.U7114@12-234-22-23.pyvrag.nggov.pbz> References: <3E46E0E3.7030708@unknown.nu> <20030210014400.GM6740@vectors.cx> <3E472244.4040004@unknown.nu> <20030209213008.O866@12-234-22-23.pyvrag.nggov.pbz> <3E47CC71.3090709@unknown.nu> <20030210095104.U7114@12-234-22-23.pyvrag.nggov.pbz>
next in thread | previous in thread | raw e-mail | index | archive | help
> Having individual uid's mitigates damage for foolish sysadmins. Well, that's a good thing, right? > The sshd user is a mistake, IMO. Apache (for the most part), bind and > sendmail have unprivileged users because they create files while running > as that uid. Does your port create files while running, or does the > install script install files as that user by default? If the latter, you > can simply install the files owned by root and world readable, then run > the daemon as user nobody and achieve the same effect. It does create files while running. That's why I brought up the point about nobody ownership. -- ---------------------------------------------------------------------------- Kim Scarborough http://www.unknown.nu/kim/ ---------------------------------------------------------------------------- "Tragedy is when I cut my finger. Comedy is when YOU fall in an open manhole and die." - Mel Brooks ---------------------------------------------------------------------------- Now listening to: Lonesome Organist - "The Steam Crow" ---------------------------------------------------------------------------- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ports" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3E47EAD0.5040600>