From owner-freebsd-questions@FreeBSD.ORG Wed Sep 1 16:02:49 2010 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id D2E2C106566C for ; Wed, 1 Sep 2010 16:02:49 +0000 (UTC) (envelope-from edflecko@gmail.com) Received: from mail-vw0-f54.google.com (mail-vw0-f54.google.com [209.85.212.54]) by mx1.freebsd.org (Postfix) with ESMTP id 8FF528FC14 for ; Wed, 1 Sep 2010 16:02:45 +0000 (UTC) Received: by vws7 with SMTP id 7so7709329vws.13 for ; Wed, 01 Sep 2010 09:02:45 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:received:date:message-id :subject:from:to:content-type; bh=L/BSS6IN3CKdgHTlqe5d2pA7f67F1+ysXkeJkWcfQsg=; b=dSFXojoJMagoFu671Mu4bQnNjAH682UPghRxO1fyFvzD3ckN25PAYzLgj5dKCk9dj9 eeEayqklYRojvWtcjqdblXMWJNYUuj2fZllHvyS4kZSvXY6YE1cJROKqzd9eTdbvw+sB UyMVlvoGE3CV+codatsbwW/5optoo3PTTWR9g= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:date:message-id:subject:from:to:content-type; b=s+cN1aOcZUnE737v2//hpVxPOp3QZDsa7OmBfJDcOY0rmYK86RQDA6pesLsp5oDCw3 DuMYeQZsa52gPr1PDByzHhC5hZteaZm0R7S6Uf/DARxBe5KeB+CP+KrENOOe9oV2/Vw+ RC91AkhsQxEbxnLZzI2lRtrEFtWwX1oSUDHaA= MIME-Version: 1.0 Received: by 10.220.163.10 with SMTP id y10mr5526854vcx.63.1283356965332; Wed, 01 Sep 2010 09:02:45 -0700 (PDT) Received: by 10.220.45.67 with HTTP; Wed, 1 Sep 2010 09:02:45 -0700 (PDT) Date: Wed, 1 Sep 2010 09:02:45 -0700 Message-ID: From: Ed Flecko To: freebsd-questions@freebsd.org Content-Type: text/plain; charset=ISO-8859-1 Subject: Should a "squid" user have a shell? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 01 Sep 2010 16:02:49 -0000 Hi folks, I'm looking in some documentation for Squid, which I'm installing on a FBSD 8.1 server, and it says I need to create a squid user and a squid group because I'm building/installing from source. I see to create the squid user, I user the (of course) "adduser" command (there isn't a default squid user with the base install, is there?). 1.) When I use the adduser command, from a security perspective, should the squid user have a shell? What should it be? 2.) How do I create a squid group and add the squid user to it? 3.) Since the squid user needs full access to the squid directory and all of its files, what the easiest way to give the appropriate permissions? Thank you, Ed