On Fri, 2006-03-17 at 08:39 +0100, Hunkeler Peter (KRDO 4) wrote: > Aside form this, I would not easily set a JAVA server TRUSTED and > PRIVILEGED. There are only a few servers that *really* need uid=0. > Most can be setup to run with non-zero uid. > > Do they say why this server needs such high credentials? If that > server starts child prcesses to server individal user request, and > if those processes also run uid=0, the users have a meams to run > "something" with uid=0.
I have a very hard time accepting anything *needs* to have UID(0). But given my absolute disdain for anything Java, I'm prepared to accept any stupidity as plausible. Steve, if you can't make a product work with UNIXPRIV or BPX.SUPERUSER as you plan, get up the vendor. *big time*. Shows a very poor appreciation for how things work in a "real world" shop. Shane ... ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: GET IBM-MAIN INFO Search the archives at http://bama.ua.edu/archives/ibm-main.html
