Date: Mon, 15 Aug 2011 12:59:07 -0400 From: Michael Powell <nightrecon@hotmail.com> To: freebsd-questions@freebsd.org Subject: Re: unprivledged users (for a service) Message-ID: <j2biv0$rkb$1@dough.gmane.org> References: <20110815163659.GA22081@gmail.com> <238F0CF5-33DC-4F9A-88E3-F8356E125573@mac.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Chuck Swiger wrote: > On Aug 15, 2011, at 9:37 AM, Chris Brennan wrote: >> It's been a while since I've had to do this and the drive that contained >> all of my notes is dead, along with the backup (I was actually lucky to >> recover my home drive before it also failed but my notes were not >> there). I cannot for the life of me remember how to properly add an >> unprivledged user that will only be used for running a specific system >> service. So it doesn't need a login shell or $HOME. > > Add a user and set the shell to /bin/false or perhaps /sbin/nologin; for > $HOME set it to /var/empty or /tmp, perhaps. > > Regards, I always used to look at user 'nobody' in vipw for this: nobody:*:65534:65534::0:0:Unprivileged user:/nonexistent:/usr/sbin/nologin -Mike
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?j2biv0$rkb$1>