On Wed, Sep 10, 2008 at 10:39:43AM -0400, Knight, Doug wrote: > All, > > Why do certain heartbeat processes run with a real user ID of root, but > an effective user ID of nobody?
It was introduced before I got here, but I'm sure that it was for security reasons. The less code runs as root, the less potential vulnerabilities. Thanks, Dejan > The specific processes on our system > that run this way are FIFO reader, write: bcast eth1, read:bcast eth1, > write: ucast eth1, read: ucast eth1 lrmd, and stonithd. The other > processes run either as root:root (master control process and mgmtd) or > as 24:24 (ccm, cib, attrd, and crmd). > > > > Thanks, > > Doug Knight > > WSI Corp > > _______________________________________________ > Linux-HA mailing list > [email protected] > http://lists.linux-ha.org/mailman/listinfo/linux-ha > See also: http://linux-ha.org/ReportingProblems _______________________________________________ Linux-HA mailing list [email protected] http://lists.linux-ha.org/mailman/listinfo/linux-ha See also: http://linux-ha.org/ReportingProblems
