l i n u x - u s e r s - g r o u p - o f - d a v i s
L U G O D
 
Next Meeting:
December 2: Social gathering
Next Installfest:
TBD
Latest News:
Nov. 18: Club officer elections
Page last updated:
2006 Jun 23 12:27

The following is an archive of a post made to our 'vox-tech mailing list' by one of its subscribers.

Report this post as spam:

(Enter your email address)
Re: [vox-tech] Purpose of "nobody" user?
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [vox-tech] Purpose of "nobody" user?



On Friday 23 June 2006 11:14, Bill Kendrick wrote:
...
> For the life of me, I couldn't really explain _what_ "nobody" is used for.
> I'm familiar with it in terms of NCSA httpd and Apache, but beyond that...
> A little help, here?  :^D

I'll take a stab at this.

The way I would explain it is that a *nix system has a variety of users
that are non-human.

They are users in the sense that they run processes that do not require
privileges to other parts of the system, and they maintain resources
(e.g. files and directories) to which other parts of the system do not
need access.  Therefore it is convenient and sensible to isolate them
from human users and from each other in the same way that human users
are isolated from each other.

The general idea is that your system is more secure if access is not
granted where it is not needed.  A non-human user may be a security
risk if, for example, it runs a program containing a flaw that lets
someone break in and run tasks with the privileges of that user.

I suppose someone chose the name "nobody" for one of these users
simply to emphasize that it's not human.  But there are many other
examples of such users, like apache, bind, daemon, mail, mysql and
news.

I hope this is not too condescending... I wrote it this way so that
newbies may also find it useful.

Rod
_______________________________________________
vox-tech mailing list
vox-tech@lists.lugod.org
http://lists.lugod.org/mailman/listinfo/vox-tech



LinkedIn
LUGOD Group on LinkedIn
Sign up for LUGOD event announcements
Your email address:
facebook
LUGOD Group on Facebook
'Like' LUGOD on Facebook:

Hosting provided by:
Sunset Systems
Sunset Systems offers preconfigured Linux systems, remote system administration and custom software development.

LUGOD: Linux Users' Group of Davis
PO Box 2082, Davis, CA 95617
Contact Us

LUGOD is a 501(c)7 non-profit organization
based in Davis, California
and serving the Sacramento area.
"Linux" is a trademark of Linus Torvalds.

Sponsored in part by:
O'Reilly and Associates
For numerous book donations.