From owner-freebsd-arch Thu Oct 18 5:45:11 2001 Delivered-To: freebsd-arch@freebsd.org Received: from flood.ping.uio.no (flood.ping.uio.no [129.240.78.31]) by hub.freebsd.org (Postfix) with ESMTP id 8DB0A37B40F; Thu, 18 Oct 2001 05:45:06 -0700 (PDT) Received: by flood.ping.uio.no (Postfix, from userid 2602) id EA94A14C2E; Thu, 18 Oct 2001 14:45:04 +0200 (CEST) X-URL: http://www.ofug.org/~des/ X-Disclaimer: The views expressed in this message do not necessarily coincide with those of any organisation or company with which I am or have been affiliated. To: Sheldon Hearn Cc: "Andrey A. Chernov" , ports@freebsd.org, arch@freebsd.org Subject: Re: HEADS UP: Apache port change from nobody:nogroup to www:www planned References: <28967.1003407521@axl.seasidesoftware.co.za> From: Dag-Erling Smorgrav Date: 18 Oct 2001 14:45:04 +0200 In-Reply-To: <28967.1003407521@axl.seasidesoftware.co.za> Message-ID: Lines: 15 User-Agent: Gnus/5.0808 (Gnus v5.8.8) Emacs/20.7 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Sender: owner-freebsd-arch@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Sheldon Hearn writes: > So do you propose to do away with nobody as the username under which to > run daemons? Nobody has never been the username under which to run daemons. It is a special user that is not supposed to own any files or processes. It is also magic in NIS and NFS (though NFS at least lets you choose a different magic user). It owns the locate database because the periodic scripts run locate.updatedb as nobody (so it won't see files that aren't supposed to be visible for everyone) but don't take care to chown the database afterwards. DES -- Dag-Erling Smorgrav - des@ofug.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-arch" in the body of the message