2010/9/5 Martin Paljak <mar...@paljak.pri.ee>: > Hello, > > On Sat, Sep 4, 2010 at 22:36, Ludovic Rousseau > <ludovic.rouss...@gmail.com> wrote: >> 2010/9/4 Martin Paljak <mar...@paljak.pri.ee>: >>> Why not make the udev rule start pcscd, running as a system user >>> (nobody?), when a reader is connected? >> >> I could. But why do this? >> That would start a process that may not be used. > > For me, this works the way I want: > > addgroup --system pcscd > adduser --system --ingroup pcscd --home /var/run/pcscd > --no-create-home --disallowed-login --disallowed-password pcscd > chown pcscd /usr/sbin/pcscd > chmod +s /usr/sbin/pcscd > > > Probably a pseudo issue, but I feel much better if the daemon runs as > a specific, non-me user. Or that after I log out, no processes owned > by me (even though short-lived) exist.
Another advantage is that (if I reuse my multi-users example from [1]) pcscd is no more a process of user A. So user A can't kill it when pcscd is also used by user B. I will implement your idea and see if everything works as expected. Thanks [1] http://ludovicrousseau.blogspot.com/2010/09/pcscd-auto-start.html -- Dr. Ludovic Rousseau _______________________________________________ opensc-devel mailing list opensc-devel@lists.opensc-project.org http://www.opensc-project.org/mailman/listinfo/opensc-devel
