Re: proftpd using nobody user with /bin/sh ?
From: Paolo Pantaleo (paolopantaleo_at_gmail.com)
Date: 09/29/05
- Previous message: Madl Alfred - Together AT: "Re: Re: Debian Installation with a Redhat kernel/drivers"
- In reply to: micobros: "proftpd using nobody user with /bin/sh ?"
- Next in thread: micobros: "RE: proftpd using nobody user with /bin/sh ?"
- Reply: micobros: "RE: proftpd using nobody user with /bin/sh ?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Date: Thu, 29 Sep 2005 17:45:26 +0200 To: admin@micobros.com
2005/9/29, micobros <micobros@gmail.com>:
>
>
>
> Hello,
>
>
>
> Proftpd is launched with user nobody. I was wondering why this user had to
> have a default shell set to /bin/sh. Is there any reason for that? Can I
> modify it to /bin/false? Is it a security problem to have a service like
> Proftpd (running standalone) running with the default shell to /bin/sh?
>
>
>
>
>
> Chears,
>
>
>
>
>
> Mico.
When you run a daemon it changes his user id to something (in this
case it is nobody) so it can get the privileges of that user. The user
id change is done in the same process(that will eventually fork, but
this doesn't matter). The daemon do not start a shell (that is started
when the user login).
PAolo
- Previous message: Madl Alfred - Together AT: "Re: Re: Debian Installation with a Redhat kernel/drivers"
- In reply to: micobros: "proftpd using nobody user with /bin/sh ?"
- Next in thread: micobros: "RE: proftpd using nobody user with /bin/sh ?"
- Reply: micobros: "RE: proftpd using nobody user with /bin/sh ?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
