[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Orphaned User Accounts?

On Wed, 03 Nov 2010 09:14:38 -0400, Carlos Mennens wrote:

> On Wed, Nov 3, 2010 at 4:18 AM, Camaleón wrote:
>> 12.1.12.1 Are all system users necessary?
>> http://www.debian.org/doc/manuals/securing-debian-howto/ch12.en.html#s-
faq-os-users
> 
> I guess I'm still puzzled. That link is a great explanation to what each
> user does and it's fairly common sense that not every daemon should and
> will run as the 'root' user. 

The above doc goes beyond explaining "what accounts are for" but stating 
that you can safely remove them if not needed by any service and how to 
find out users not owning any file.

In fact, those accounts are not "orphaned" by created by "base-passwd" 
package... please, take a closer look to "/usr/share/doc/base-passwd/
README" file.

> My question or issue with Debian is if I do
> a fresh 'minimal' installation using the 'netinst' or 'business card'
> ISO, that gives me basically a bare minimal installation. There is no
> need to explain what every user is used for because in my
> opinion, it's fairly obvious that 'www-data' is used for a web server.

You should forward your query/proposal to Debian devel mailing list where 
"food is being cooked" :-)

Greetings,

-- 
Camaleón
Reply to: