Date: Thu, 10 Oct 2002 10:13:53 GMT From: Socketd <db@traceroute.dk> To: Giorgos Keramidas <keramida@ceid.upatras.gr>, freebsd-questions@freebsd.org Subject: Re: Security questions Message-ID: <20021010.10135300.3745751216@rafter.> In-Reply-To: <20021010023701.GJ21391@hades.hell.gr> References: <20021009.22451000.4017525480@rafter.> <20021010023701.GJ21391@hades.hell.gr>
next in thread | previous in thread | raw e-mail | index | archive | help
>>>>>>>>>>>>>>>>>> Original Message <<<<<<<<<<<<<<<<<< On 10/10/02, 4:37:02 AM, Giorgos Keramidas <keramida@ceid.upatras.gr> wr= ote=20 regarding Re: Security questions: > > I've noticed that syslogd run as root, but why? Syslog just need to > > connect to a port, get messages and write them to some files, so why= does > > I have to be root? I know you have to be root to bind() to a port be= low > > 1024, but there should be a syslog user to lower UID to after it hav= e > > done that?!?!? > One reason is to be able to bind to a lower port than 1024. Jep, I also mentioned that. > Another reason is obvious if you look at the owner and permissions of > the system log files: > giorgos@patata[05:33]/home/giorgos$ ls -ld /var/log/messages > -rw-r--r-- 1 root wheel 620908 Oct 10 05:33 /var/log/messages Yes, but they could be changed to user: syslog br socketd To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20021010.10135300.3745751216>