From owner-freebsd-questions Wed Aug 9 6:11:59 2000 Delivered-To: freebsd-questions@freebsd.org Received: from mta01-svc.ntlworld.com (mta01-svc.ntlworld.com [62.253.162.41]) by hub.freebsd.org (Postfix) with ESMTP id C696B37B594 for ; Wed, 9 Aug 2000 06:11:54 -0700 (PDT) (envelope-from mark@ukug.uk.freebsd.org) Received: from parish.my.domain ([62.255.99.248]) by mta01-svc.ntlworld.com (InterMail vM.4.01.02.27 201-229-119-110) with ESMTP id <20000809131150.BNAF26680.mta01-svc.ntlworld.com@parish.my.domain>; Wed, 9 Aug 2000 14:11:50 +0100 Received: (from mark@localhost) by parish.my.domain (8.9.3/8.9.3) id OAA01196; Wed, 9 Aug 2000 14:11:09 +0100 (BST) (envelope-from mark) Date: Wed, 9 Aug 2000 14:11:09 +0100 From: Mark Ovens To: Thomas Good Cc: questions@freebsd.org Subject: Re: Nobody versus FreeBSD Message-ID: <20000809141108.F251@parish> References: <20000809125157.B251@parish> Mime-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline Content-Transfer-Encoding: 8bit User-Agent: Mutt/1.2.5i In-Reply-To: ; from tomg@mailhost.nrnet.org on Wed, Aug 09, 2000 at 08:33:52AM -0400 Organization: Total lack of Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Wed, Aug 09, 2000 at 08:33:52AM -0400, Thomas Good wrote: > Hello! > > I have a (postgres) database accessed via apache and perl/CGI. > Nobody is my default user. The code that works on Linux (boo hiss) > is failing on FBSD in one minor area: mail delivery. > > The perl scripts generate email for diff purposes, however, whilst > running on an FBSD box, Nobody the postman runs into a problem. > He is unable to write to /var/spool/mqueue. > > Permissions are identical linux to bsd: 755 from /var to .../mqueue > Ownership is correct (root.daemon for the target dir) although diff > from Linux (root.mail). Is any of this pertinent? > > Also, the entry in /etc/passwd for nobody is similar across systems. > He is a member of his own (nonexistent ;-) group. Would adding a > group be advisable or is there a less insecure solution? > ``nobody'' is a special user account. I don't know all the technical details, but at http://www.freebsd.org/handbook/users-system.html it says: "nobody is the generic unprivileged system user, but the more services that use nobody, the more privileged it becomes." ``nobody'' is the user that the scripts in /etc/periodic run. Maybe your use of ``nobody'' is inappropriate? Hopefully someone else will provide a more detailed answer :) > Thanks very much! > Tom Good > > -------------------------------------------------------------------- > SVCMC - Center for Behavioral Health > -------------------------------------------------------------------- > Thomas Good tomg@ { admin | q8 } .nrnet.org > IS Coordinator / DBA Phone: 718-354-5528 > Fax: 718-354-5056 > -------------------------------------------------------------------- > Powered by: PostgreSQL s l a c k w a r e FreeBSD: > RDBMS |---------- linux The Power To Serve > -------------------------------------------------------------------- > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message -- 4.4 - The number of the Beastie ________________________________________________________________ 51.44°N FreeBSD - The Power To Serve http://www.freebsd.org 2.057°W My Webpage http://ukug.uk.freebsd.org/~mark mailto:marko@freebsd.org http://www.radan.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message