From owner-freebsd-questions Wed Mar 21 12:41:44 2001 Delivered-To: freebsd-questions@freebsd.org Received: from eve.licentia.net (eve.licentia.net [209.100.162.198]) by hub.freebsd.org (Postfix) with SMTP id 409F537B71D for ; Wed, 21 Mar 2001 12:41:42 -0800 (PST) (envelope-from lists@stevenfettig.com) Received: (qmail 31814 invoked from network); 21 Mar 2001 20:31:35 -0000 Received: from unknown (HELO MOBILE2) (209.100.162.195) by eve.licentia.net with SMTP; 21 Mar 2001 20:31:35 -0000 From: "SF" To: "Freebsd-Questions" Subject: Users for Daemons - not logging in - how? Date: Wed, 21 Mar 2001 14:32:18 -0600 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) X-MimeOLE: Produced By Microsoft MimeOLE V5.00.3018.1300 Importance: Normal Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG I'm trying to set up users for running specific service daemons, but I don't want someone to be able to use that user to log into the machine via ssh (which is the only way to log into the machine remotely) or the console. I searched through the mail list and couldn't find the answer, but apologize if this has been asked before. Would I be correct in doing something similar to what one does when installing qmail? I.e.: pw groupadd daemongrp pw useradd daemon1 -g daemongrp -d /var/daemondir -s /nonexistent &tc... I guess I'm looking for a fairly secure way of adding groups and users that won't open me up to possible attacks. Any suggestions are welcome. TIA, SF To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message