unprivledged users (for a service)

Michael Powell nightrecon at hotmail.com
Mon Aug 15 16:54:09 UTC 2011


Chuck Swiger wrote:

> On Aug 15, 2011, at 9:37 AM, Chris Brennan wrote:
>> It's been a while since I've had to do this and the drive that contained
>> all of my notes is dead, along with the backup (I was actually lucky to
>> recover my home drive before it also failed but my notes were not
>> there). I cannot for the life of me remember how to properly add an
>> unprivledged user that will only be used for running a specific system
>> service. So it doesn't need a login shell or $HOME.
> 
> Add a user and set the shell to /bin/false or perhaps /sbin/nologin; for
> $HOME set it to /var/empty or /tmp, perhaps.
> 
> Regards,

I always used to look at user 'nobody' in vipw for this:

nobody:*:65534:65534::0:0:Unprivileged user:/nonexistent:/usr/sbin/nologin

-Mike




More information about the freebsd-questions mailing list