HPE Community
Operating System - HP-UX
1833031 Members
2136 Online
110049 Solutions
New Discussion

Starting process named as nobody

 
Fabrizio Alleva
Occasional Advisor

‎06-20-2002 07:52 AM

‎06-20-2002 07:52 AM

Starting process named as nobody

Hi,
I want to know if someone has never started the process named (DNS process) with the user NOBODY. And which are the benefit to do it ?
I've another little things: On my machine there are some NFS file system....
I'm runnig on HPUX 11.0
Thanks a lot
Fabrizio
0 Kudos
Reply
4 REPLIES 4
Mark Greene_1
Honored Contributor

‎06-20-2002 08:05 AM

‎06-20-2002 08:05 AM

Re: Starting process named as nobody

It's not a good idea. Named has to be able to read a lot of files: /etc/resolf.conf, /etc/nsswitch.conf, /etc/hosts, /etc/named.boot (or /etc/named.conf) and all your DNS files.

You'll also run into directory permissions in /var/run.

HTH
mark
the future will be a lot like now, only later
0 Kudos
Reply
Sachin Patel
Honored Contributor

‎06-20-2002 08:37 AM

‎06-20-2002 08:37 AM

Re: Starting process named as nobody

I try to run it as user named on linux system but start having trouble and then when I start using root I have no more trouble.

Sachin
Is photography a hobby or another way to spend $
0 Kudos
Reply
Mike Hassell
Respected Contributor

‎06-20-2002 08:42 AM

‎06-20-2002 08:42 AM

Re: Starting process named as nobody

Fabrizio,

From what I've read it's good practice to Run BIND with minimum privileges: as a non-root user, with a tight umask. Take a look at the following paper that describes a secure install on Solairs:

http://www.boran.com/security/sp/bind_hardening8.html

If you are trying to further secure your BIND installation, I would recommend the following:

1. Create a user and group account for BIND (named:named)

2. Don't allow the BIND account to use ftp (/etc/ftpusers)

3. Set up file permissions on all assoicated named files and directories.

The paper further describes these steps.

Hope that helps.

-Mike
The network is the computer, yeah I stole it from Sun, so what?
0 Kudos
Reply
T G Manikandan
Honored Contributor

‎06-20-2002 07:50 PM

‎06-20-2002 07:50 PM

Re: Starting process named as nobody

Hello,
You are telling that you have some NFS file systems.
Might be someone has started some processes from that.
Whenever you access a remote file system you are assigned as user nobody.

Thanks
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.