On 3/14/07, Abstract <[EMAIL PROTECTED]> wrote:
Anders, thanks for the help, I will look into this immediately.
Just to add to what Anders said: using different users for different services is one more protection level, as if such a service get compromised, the atacker will not be able to mess with other services. Lets say, if both apache and mysql run as user nobody, then if someone compromises mysql and can make mysqld to execute arbitrary code - this new attack code will run as nobody as well. Now if apache is running as nobody , the attacker can mess with the apache process. So, in general, if you plan to run your own service, better create a new user for it. Cheers -- Svetoslav Milenov (Sunny) Even the most advanced equipment in the hands of the ignorant is just a pile of scrap. -- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
