Re: updatedb running as user nobody

To: <debian-user@lists.debian.org>
Subject: Re: updatedb running as user nobody
From: "nate" <debian-user@aphroland.org>
Date: Sat, 1 Feb 2003 08:54:52 -0800 (PST)
Message-id: <[🔎] 34260.10.10.10.7.1044118492.squirrel@webmail.linuxpowered.net>
In-reply-to: <[🔎] Pine.LNX.4.10.10302010750140.21884-100000@mardy.hank.org>
References: <[🔎] Pine.LNX.4.10.10302010750140.21884-100000@mardy.hank.org>

Bill Moseley said:

> If on this system it's not a problem that people see file names of all
> files is there any reason not to run updatedb as root?

security reasons I'm sure. to minimize effects of buffer overflows
for the program(I think usually the buffer overflow would be in
the locate command which queries the database generated by updatedb,
or at least i've seen several posts on overflows in a more secure version
of locate called slocate ..)

make your home directories world read/executable(you can still make
the files non readable), and you should be able to index all the files,
and keep people from accessing those files. Unless your really paranoid
about people knowing what filenames you have ..

all of my machines run in a trusted enviornment so it's not really
an issue for me.


nate

Reply to:

References:
- updatedb running as user nobody
  - From: Bill Moseley <moseley@hank.org>

Prev by Date: Re: Samba + LDAP
Next by Date: hdparm -d1: Operation not permitted
Previous by thread: updatedb running as user nobody
Next by thread: Re: cdrecord freezes when burning data
Index(es):
- Date
- Thread