From owner-freebsd-questions  Thu Oct 10  2:59: 3 2002
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 6F93D37B404
	for <freebsd-questions@freebsd.org>; Thu, 10 Oct 2002 02:59:02 -0700 (PDT)
Received: from nic.upatras.gr (nic.upatras.gr [150.140.129.30])
	by mx1.FreeBSD.org (Postfix) with SMTP id B070643E8A
	for <freebsd-questions@freebsd.org>; Thu, 10 Oct 2002 02:59:00 -0700 (PDT)
	(envelope-from keramida@ceid.upatras.gr)
Received: (qmail 7544 invoked from network); 10 Oct 2002 09:52:00 -0000
Received: from upnet-dialinpool-73.upnet.gr (HELO hades.hell.gr) (@150.140.128.181)
  by nic.upatras.gr with SMTP; 10 Oct 2002 09:52:00 -0000
Received: from hades.hell.gr (hades [127.0.0.1])
	by hades.hell.gr (8.12.6/8.12.6) with ESMTP id g9A2b3jP030445;
	Thu, 10 Oct 2002 05:37:03 +0300 (EEST)
	(envelope-from keramida@ceid.upatras.gr)
Received: (from keramida@localhost)
	by hades.hell.gr (8.12.6/8.12.6/Submit) id g9A2b2eN030444;
	Thu, 10 Oct 2002 05:37:02 +0300 (EEST)
	(envelope-from keramida@ceid.upatras.gr)
Date: Thu, 10 Oct 2002 05:37:02 +0300
From: Giorgos Keramidas <keramida@ceid.upatras.gr>
To: Socketd <db@traceroute.dk>
Cc: freebsd-questions@freebsd.org
Subject: Re: Security questions
Message-ID: <20021010023701.GJ21391@hades.hell.gr>
References: <20021009.22451000.4017525480@rafter.>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <20021009.22451000.4017525480@rafter.>
X-PGP-Fingerprint: C1EB 0653 DB8B A557 3829 00F9 D60F 941A 3186 03B6
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG

On 2002-10-09 22:45, Socketd <db@traceroute.dk> wrote:
> Hi all
> 
> I've noticed that syslogd run as root, but why? Syslog just need to 
> connect to a port, get messages and write them to some files, so why does 
> I have to be root? I know you have to be root to bind() to a port below
> 1024, but there should be a syslog user to lower UID to after it have 
> done that?!?!?

One reason is to be able to bind to a lower port than 1024.

Another reason is obvious if you look at the owner and permissions of
the system log files:

giorgos@patata[05:33]/home/giorgos$ ls -ld /var/log/messages
-rw-r--r--  1 root  wheel  620908 Oct 10 05:33 /var/log/messages

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message