Re: Unprivileged default user for "tiny" daemons?
- Reply: Shawn Webb : "Re: Unprivileged default user for "tiny" daemons?"
- In reply to: Brooks Davis : "Re: Unprivileged default user for "tiny" daemons?"
- Go to: [ bottom of page ] [ top of archives ] [ this month ]
Date: Tue, 09 May 2023 08:26:27 UTC
* Brooks Davis <brooks@freebsd.org> [20230509 08:11]:
> On Tue, May 09, 2023 at 10:05:15AM +0200, Felix Palmen wrote:
> > * Felix Palmen <zirias@FreeBSD.org> [20230508 18:39]:
> > So, takeaway is: There is no safe choice other than allocating a
> > dedicated UID for every single daemon, even if it doesn't need to
> > own/access any files? Is this really correct?
>
> This is clearly the right choice even it's a bit of a pain.
Thanks for confirming. Well, my concern wasn't the hassle to actually do
that, but more the confusion created by the comment on top of UIDs, and
also the fact that this seems to be a "waste" of precious "uid space"
below 1000 if you don't need any file permissions...
But seems there's indeed no immediate solution here :(
Cheers, Felix
--
Felix Palmen <zirias@FreeBSD.org> {private} felix@palmen-it.de
-- ports committer (mentee) -- {web} http://palmen-it.de
{pgp public key} http://palmen-it.de/pub.txt
{pgp fingerprint} 6936 13D5 5BBF 4837 B212 3ACC 54AD E006 9879 F231