Write access for Nagat problem??

[Marc Powell]

> -----Original Message-----
> From: Jamie Bohr [mailto:Jamie_Bohr at Agilent.com]
> Sent: Tuesday, November 25, 2003 11:20 AM
> To: TIM MOORE
> Cc: nagios-users at lists.sourceforge.net
> Subject: Re: [Nagios-users] Write access for Nagat problem??
> 
> Can Apache be ran as a real user such as apache?

Yes, but you shouldn't. As far as configuring Nagios/apache to work
together fully, there's no difference between a 'real user' and the
nobody user. They're both just as real as each other but the nobody user
doesn't allow logins.

> 
> I not sure but user nobody should not be used to applications and may
> even be restricted.  My user "nobody" has a shell of /sbin/nologin
which
> does not allow the user to login or even be su'ed to.  Is there a
reason
> why apache is running as "nobody"?

Yes, security reasons primarily. If some random CGI were to have a
security hole, running as nobody with no shell severely limits the
amount of damage that could be done. Apache does not need a login shell
to be able to function properly.

--
Marc


-------------------------------------------------------
This SF.net email is sponsored by: SF.net Giveback Program.
Does SourceForge.net help you be more productive?  Does it
help you create better code?  SHARE THE LOVE, and help us help
YOU!  Click Here: http://sourceforge.net/donate/
_______________________________________________
Nagios-users mailing list
Nagios-users at lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/nagios-users
::: Please include Nagios version, plugin version (-v) and OS when reporting any issue. 
::: Messages without supporting info will risk being sent to /dev/null