Date: Tue, 18 May 2021 13:52:40 -0700 From: K Lu <kludev@gmail.com> To: Tomasz CEDRO <tomek@cedro.info> Cc: FreeBSD Questions Mailing List <freebsd-questions@freebsd.org> Subject: Re: Can non-root user create/start services? Message-ID: <CAEz5-SwTQMsN351Ug=j72iNueE0YRiGTRGWJ_esp_jtZh7_pVg@mail.gmail.com> In-Reply-To: <CAM8r67Az%2BNG2qRui3LDmzx4TEnRjEqwp8dim2_dL=Ds6sdjzQA@mail.gmail.com> References: <ED008A9A-A5BE-4BEB-B636-D60295F59C8A@gmail.com> <CAM8r67CD1Sd9nFz=1Wrui414eVUNuRMRkOJp4BONeO%2Bgep2zMA@mail.gmail.com> <CAM8r67Az%2BNG2qRui3LDmzx4TEnRjEqwp8dim2_dL=Ds6sdjzQA@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Right, I don't want to change to root for those tasks. Reason I want non-root user create/start services is because, the user may want to run a long running, daemonized program, eg, a FUSE process, which can reliably automatically start when the system starts. Or another example is, the user wants to run its own IRC bouncer, or IRC bot, etc. For all these scenarios, the tasks are highly personal, which don't suit running as root, and yet they require to be long running and non-interactive, which fits freebsd service well. That's why I'm curious, if the user can define and start "per-user" services. Not sure if I elaborate the use cases well :) Another option I can think of is using user cron jobs. Are there other options? Thanks! On Tue, May 18, 2021 at 1:01 PM Tomasz CEDRO <tomek@cedro.info> wrote: > > On Tue, May 18, 2021 at 9:58 PM Tomasz CEDRO wrote: > > In general Unix always separates root (administrator tasks) from users > > (non administrative tasks). This is why "gaining root" as > > standard/restricted user is always the most interesting part ;-) > > Clarification - any way for your user to perform root operations is > also a good way for others to perform root actions - this is usually a > serious security threat and you want avoid that :-) > > -- > CeDeROM, SQ7MHZ, http://www.tomek.cedro.info
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAEz5-SwTQMsN351Ug=j72iNueE0YRiGTRGWJ_esp_jtZh7_pVg>