LinuxQuestions.org
LinuxAnswers - the LQ Linux tutorial section.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Software > Linux - Kernel
User Name
Password
Linux - Kernel This forum is for all discussion relating to the Linux kernel.

Notices

Reply
 
Search this Thread
Old 01-10-2009, 03:42 PM   #1
Marty McNamara
LQ Newbie
 
Registered: Feb 2008
Posts: 5

Rep: Reputation: 0
General question on users accounts that are created automatically.


Hi,

On my Ubuntu linux box there are many user accounts that have been created since I've installed the system.

All these accounts were created during install of new software, as example I've installed tomcat, boinc and ntpd which resulted in the following new user accounts.

uid=117(tomcat55) gid=65534(nogroup) groups=65534(nogroup)
uid=114(ntp) gid=126(ntp) groups=126(ntp)
uid=113(boinc) gid=125(boinc) groups=125(boinc)

Naturally now there are some process on my system running owned by tomcat55, boinc and ntp.

The questions I have (excuse my lack of knowledge),

1.
These accounts were created automatically during install, did the installer set a password for these accounts?.

2.
If so, how do I find out what the password is?

3.
Can I login to these accounts?.

4.
Is there any security issues, with accounts that are automatically created?.

5.
If I login as root and change the passwords of these accounts, will everything still work ok?. My guess to this is yes, as the root account kicks off these process on boot up and does not need to know the account password.

I've read the linux system administrators guide and done a good bit of searching for an answer but I still don't have any answers.

If You know the answer to any of these questions or can point me to somewhere that can answer the question that would be great.

Marty
 
Old 01-10-2009, 04:39 PM   #2
acid_kewpie
Moderator
 
Registered: Jun 2001
Location: UK
Distribution: Gentoo, RHEL, Fedora, Centos
Posts: 43,414

Rep: Reputation: 1966Reputation: 1966Reputation: 1966Reputation: 1966Reputation: 1966Reputation: 1966Reputation: 1966Reputation: 1966Reputation: 1966Reputation: 1966Reputation: 1966
1, 2. no - check /etc/shadow - that's where the passwords would be stored as md5 strings, only your own accounts should have passwords listed.

3. you could su to them from root if you wished, but as you go via root, those accounts are naturally of less interest for security reasons that root itself.

4. Well there are positive issues in that those accounts are generally used to run non-privileged daemon processes so as to not have to run things like ntpd as root when it does not need to be.

5. well as above, don't. nothing would stop working, but it's a nonsensical thing to do, you're clearly halfway there already with your last comments there.
 
Old 01-10-2009, 05:03 PM   #3
jiml8
Senior Member
 
Registered: Sep 2003
Posts: 3,171

Rep: Reputation: 114Reputation: 114
*nix is strongly oriented toward security and minimum necessary permissions. By giving these programs their own account and group, it becomes easy to restrict their permissions - which in its turn greatly restricts the amount of damage they can do either through bugs, or because somehow you obtained a rogue copy of one of those packages.
 
  


Reply

Tags
account, automatic, linux, user


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
created user picks up machine accounts chozz Linux - General 0 08-22-2008 09:16 AM
How to automatically Copying file to other destination as soon as it is created irfanb146 Linux - Newbie 6 07-16-2008 06:25 AM
General question about user accounts ReverB Linux - General 4 04-26-2005 11:10 PM
device icons created automatically after reboot mushmaster Linux - Newbie 2 08-14-2004 07:00 PM
super users and accounts ,and xf86config- i have a few question back-off Slackware 6 06-14-2004 02:30 AM


All times are GMT -5. The time now is 06:10 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration