ISC DHCP Server port UID/GID question
Jeremy Chadwick
koitsu at FreeBSD.org
Fri Jan 18 08:38:25 PST 2008
On Fri, Jan 18, 2008 at 10:17:44AM -0500, Erik Van Benschoten wrote:
> I noticed that, but I believe that that is a privilege separation account
> that is used with the OpenBSD-version of the dhclient. Also, as I pointed
> out, if this is usable, then why isn't the isc-dhcp-server port using it
> instead of allocating a UID/GID for itself during the install?
You're correct on both accounts. My home RELENG_7 box:
# pkg_info | grep dhcp
isc-dhcp3-server-3.0.5_2 The ISC Dynamic Host Configuration Protocol server
# grep dhcp /etc/group
_dhcp:*:65:
dhcpd:*:1502:
# grep dhcp /etc/passwd
_dhcp:*:65:65:dhcp programs:/var/empty:/usr/sbin/nologin
dhcpd:*:1502:1502:DHCP Daemon:/nonexistent:/usr/sbin/nologin
# ps -auxw | grep dhcp
dhcpd 699 0.0 0.1 3088 1756 ?? Ss Thu06am 0:10.50 /usr/local/sbin/dhcpd -q -cf /conf/ME/dhcpd.conf -lf /var/db/dhcpd/
root 29418 0.0 0.0 3292 940 p2 S+ 8:35am 0:00.00 grep dhcp
# grep dhcp /usr/src/etc/group
_dhcp:*:65:
# grep dhcp /usr/src/etc/master.passwd
_dhcp:*:65:65::0:0:dhcp programs:/var/empty:/usr/sbin/nologin
So, as you can see, isc-dhcp3-server adds a "dhcpd" user and group to
/etc/passwd and /etc/group, and the FreeBSD base system prefers one
called _dhcp which will get added (if deleted) via mergemaster.
--
| Jeremy Chadwick jdc at parodius.com |
| Parodius Networking http://www.parodius.com/ |
| UNIX Systems Administrator Mountain View, CA, USA |
| Making life hard for others since 1977. PGP: 4BD6C0CB |
More information about the freebsd-ports
mailing list