[Networker] Security concerns with NMC?
2009-10-16 14:42:54
Hi,
I'm reposting my earlier message ("User/Group for NMC?") with a more
specific subject.
Before installing the NMC software, I have some concerns about the user
account that this will run under, specifically the fact that this
package runs as a web server on whatever machine you install it on, if I
understand correctly, yes? Makes me kinda nervous.
Anyway, this will be installed on the primary backup server, running
Linux with NW 7.5SP1. The installation guide says:
"Specify a User/Group with limited privileges that NMC will use to run
the web server. This must be a non-root user. For example, Linux
operating systems have a default user/group [nobody/nobody] that can be
used."
1. What would be considered a user with limited privileges? Any new
user/group that you create that's not root (uid=0 or gid=0)?
2. Is anyone using a restricted shell for this? Would that even work or
be of any security advantage?
3. How about a chrooted environment?
Thanks.
--
George Sinclair
Voice: (301) 713-3284 x210
- The preceding message is personal and does not reflect any official or
unofficial position of the United States Department of Commerce -
- Any opinions expressed in this message are NOT those of the US Govt. -
To sign off this list, send email to listserv AT listserv.temple DOT edu and type
"signoff networker" in the body of the email. Please write to networker-request
AT listserv.temple DOT edu if you have any problems with this list. You can access the
archives at http://listserv.temple.edu/archives/networker.html or
via RSS at http://listserv.temple.edu/cgi-bin/wa?RSS&L=NETWORKER
|
<Prev in Thread] |
Current Thread |
[Next in Thread>
|
- [Networker] Security concerns with NMC?,
George Sinclair <=
|
|
|