View previous topic :: View next topic |
Author |
Message |
nick_already_taken Tux's lil' helper
Joined: 15 Jan 2005 Posts: 137
|
Posted: Sat Jan 15, 2005 7:06 pm Post subject: users of unkown source in my system |
|
|
Hello,
I am walking through a security guide on
http://www.puschitz.com/SecuringLinux.shtml
So I ran the command
Code: |
egrep -v ':\*|:!' /etc/shadow | awk -F: '{print $1}'
root
cron
sshd
at
squid
gdm
xfs
named
mysql
postgres
apache
nut
cyrus
vpopmail
alias
qmaild
qmaill
qmailp
qmailq
qmailr
qmails
postfix
smmsp
portage
|
As I was curious where all these users come from I was advised to run
Code: | find / -user <account> |
The result is
Code: | find: /proc/28231/fd/4: Datei oder Verzeichnis nicht gefunden |
The results are nearly the same, only the numbers # in the "proc/###/fd/4" filesystem are changing.
The only users actually used are "root", "portage", "mysql" and my private user, which I haven't included on the list.
Have these users been created during gentoo installation or by an emerge of a software? Funny is, that i.e. I haven't installed Apache on my system. So where does the user "Apache" come from?
I am a bit confused. Thank you for any help. |
|
Back to top |
|
|
Xerxes83 Tux's lil' helper
Joined: 20 Oct 2004 Posts: 127 Location: The Netherlands
|
Posted: Sat Jan 15, 2005 11:03 pm Post subject: |
|
|
They were probably there to begin with. I cleaned up my users a while back, and I also had at least the following users:
qmaild
qmaill
qmailp
qmailq
qmailr
qmails
I hope they don't add so many useless users with new systems... coz the ebuild emerging for example qmail could handle it. |
|
Back to top |
|
|
nick_already_taken Tux's lil' helper
Joined: 15 Jan 2005 Posts: 137
|
Posted: Thu Jan 20, 2005 6:28 pm Post subject: |
|
|
Xerxes83 wrote: | They were probably there to begin with. I cleaned up my users a while back, and I also had at least the following users:
qmaild
qmaill
qmailp
qmailq
qmailr
qmails
I hope they don't add so many useless users with new systems... coz the ebuild emerging for example qmail could handle it. |
If have found out, that some of these users have been created by the "baselayout" package.
There is a GLEP open
http://www.gentoo.org/proj/en/glep/glep-0027.html
which hopefully gets finished some time.
It tries to address this issue, so that every package can adress a function to
create users, that belong to a package and not everyone has to invent the
wheel once again.
It also talks about the option to configure the behaviour, so you are able
to forbid packages to create users. |
|
Back to top |
|
|
|