From owner-freebsd-questions@FreeBSD.ORG Thu Sep 16 15:22:30 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id E029816A4CE for ; Thu, 16 Sep 2004 15:22:30 +0000 (GMT) Received: from mta10.adelphia.net (mta10.adelphia.net [68.168.78.202]) by mx1.FreeBSD.org (Postfix) with ESMTP id 7830C43D2D for ; Thu, 16 Sep 2004 15:22:30 +0000 (GMT) (envelope-from lists@mactutor.biz) Received: from [192.168.0.20] (really [68.64.69.17]) by mta10.adelphia.net (InterMail vM.6.01.03.02 201-2131-111-104-20040324) with ESMTP id <20040916152229.XASR9204.mta10.adelphia.net@[192.168.0.20]>; Thu, 16 Sep 2004 11:22:29 -0400 In-Reply-To: References: <414990F7.3000101@grokking.org> Mime-Version: 1.0 (Apple Message framework v619) Content-Type: text/plain; charset=US-ASCII; format=flowed Message-Id: <390669D0-07F4-11D9-8C55-000A95775140@mactutor.biz> Content-Transfer-Encoding: 7bit From: mailing lists at MacTutor Date: Thu, 16 Sep 2004 11:22:29 -0400 To: Jan Grant X-Mailer: Apple Mail (2.619) cc: freebsd-questions@freebsd.org Subject: Re: what are the pros and cons of running in single user? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 16 Sep 2004 15:22:31 -0000 jan, I agree with what you say about tuning the startup scripts. In my relatively limited experience as a system admin., I think this is the 'better' thing to do. Perhaps you would agree. My next step is to understand the kernel security levels and what each one entails. But, that I can, hopefully, look up. thanks, alex On Sep 16, 2004, at 9:56 AM, Jan Grant wrote: > On Thu, 16 Sep 2004, Ed Budd wrote: > >> mailing lists at MacTutor wrote: >>> I have a machine running 4.10-STABLE that will be a dedicated >>> gateway with a >>> router/firewall combo and web server plus mysql server (maybe). What >>> would >>> be the pros and cons of running this system single user? Processes >>> that run >>> under their own uid, would they be able to run? >>> >>> Just curious. Any extra thoughts welcome. >>> >> >> er...doesn't "single user" mode mean no networking? My understanding >> is that >> this is really only for maintenance (ie. make installworld, etc.), >> not regular >> operations. Perhaps you meant something else or I just haven't had >> enough >> caffeine yet... > > > So to answer the question: you can certainly tune the scripts and > services available that launch you into multi-user mode to get a > minimum > profile on the machine. However if you modify rc to the extent that it > turns on everything you need in order to set up bridging, run a few > daemons etc then you're effectively duplicating the multiuser startup > anyway. > > jan > > * modulo securelevel changes which can only be reverted via reboot. > > -- > jan grant, ILRT, University of Bristol. http://www.ilrt.bris.ac.uk/ > Tel +44(0)117 9287088 Fax +44 (0)117 9287112 http://ioctl.org/jan/ > The Java disclaimer: values of 'anywhere' may vary between regions. > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "freebsd-questions-unsubscribe@freebsd.org" > > - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Alexander Sendzimir (owner) 802 863 5502 MacTutor: Apple Mac OS X Consulting info@mactutor.biz