Re: Who is 'nobody'?

To: debian-user@lists.debian.org
Subject: Re: Who is 'nobody'?
From: Harry Henry Gebel <hgebel@magpage.com>
Date: Thu, 30 Nov 2000 15:29:25 -0500
Message-id: <[🔎] 20001130152925.A31152@magpage.com>
Mail-followup-to: debian-user@lists.debian.org
In-reply-to: <[🔎] Pine.HPX.4.10.10011302055510.27857-100000@stud3.tuwien.ac.at>; from e9626471@student.tuwien.ac.at on Thu, Nov 30, 2000 at 08:57:11PM +0100
References: <[🔎] 20001130163746.A21550@godzillah> <[🔎] Pine.HPX.4.10.10011302055510.27857-100000@stud3.tuwien.ac.at>

On Thu, Nov 30, 2000 at 08:57:11PM +0100, Stephan Kulka wrote:
> > > Who is this "nobody"?
> > 'nobody' is a 'system' user. User 'nobody' should never ever have ANY files
> > in the filesystem (if it does, that's probably a security hole), and should
> > be used by daemons and the like that need only read access to files that are
> > readable by all users.
> Is it therefore necessary that 'nobody' has an enty in the passwd file??

Yes, the kernel knows nothing about user names, only numbers. The entries
in /etc/password are what programs use to map UIDs to user names (this is
why /etc/password must be world readable and why shadow passwords came into
existence.) If 'nobody' was not listed in /etc/password su (or any other
program) would be able to figure out what UID to change to.

-- 
Harry Henry Gebel, ICQ# 76308382
West Dover Hundred, Delaware

Reply to:

References:
- Re: Who is 'nobody'?
  - From: Henrique M Holschuh <hmh+debianml@rcm.org.br>
- Re: Who is 'nobody'?
  - From: Stephan Kulka <e9626471@student.tuwien.ac.at>

Prev by Date: Re: Who is 'nobody'?
Next by Date: Re: gpg: "Warning: using shared memory" - SUID?
Previous by thread: Re: Who is 'nobody'?
Next by thread: Re: Who is 'nobody'?
Index(es):
- Date
- Thread