Fedora User Management (revisited)
Axel Thimm
Axel.Thimm at ATrpms.net
Sat Mar 10 11:06:10 UTC 2007
On Sat, Mar 10, 2007 at 11:16:47AM +0100, Enrico Scholz wrote:
> Axel Thimm <Axel.Thimm at ATrpms.net> writes:
>
> > Indeed, most of the packages we're talking about (if not all) don't
> > need a fixed uid/gid at all.
>
> When a package/daemon writes files and/or reads files which are protected
> by file permissions, it is a good candidate for fixed uids.
Don't userdel the user. That's all there is to it. Check out httpd, a
prominent package which can have sensitive data underneath its user.
--
Axel.Thimm at ATrpms.net
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-maintainers/attachments/20070310/50d738c1/attachment.sig>
More information about the Fedora-maintainers
mailing list