LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 02-26-2011, 04:49 AM   #1
lesca
Member
 
Registered: Sep 2010
Posts: 58

Rep: Reputation: 0
Smile How to change to the possible user ID?


Hello everyone

I have installed tftpd on Ubuntu, but I think it not secure very much. So I read its manual, and it says:
Quote:
The server should have the user ID with the lowest possible privilege.
I find the server has the root UID:
Code:
$ ps -ef | grep xinetd
UID        PID  PPID  C STIME TTY          TIME CMD
root      3556     1  0 16:08 ?        00:00:00 /usr/sbin/xinetd -pidfile /var/run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6
So how can I change its UID to the lowest possible privilege?

Any tip is welcome!
Thanks!
 
Old 02-26-2011, 04:57 AM   #2
acid_kewpie
Moderator
 
Registered: Jun 2001
Location: UK
Distribution: Gentoo, RHEL, Fedora, Centos
Posts: 43,417

Rep: Reputation: 1975Reputation: 1975Reputation: 1975Reputation: 1975Reputation: 1975Reputation: 1975Reputation: 1975Reputation: 1975Reputation: 1975Reputation: 1975Reputation: 1975
nothing to do with programming, moved to Linux - Newbie.

the xinetd user is not the tftpd user. If you've read the manual then you'll surely already know about the -u option. "man tftpd" if not. it should default to "nobody" which is pretty jolly unprivileged, but if you do want to change anything, it'll be in /etc/xinetd.d/tftp
 
Old 02-26-2011, 05:24 AM   #3
lesca
Member
 
Registered: Sep 2010
Posts: 58

Original Poster
Rep: Reputation: 0
Quote:
Originally Posted by acid_kewpie View Post
nothing to do with programming, moved to Linux
I am sorry. But how to move?

Quote:
Originally Posted by acid_kewpie View Post
the xinetd user is not the tftpd user.
I think I am right, because I find it is the xinetd listening on port 69:
Code:
$ sudo netstat -lnput
Active Internet connections (only servers)
tcp        0      0 0.0.0.0:22              0.0.0.0:*               LISTEN      929/sshd        
tcp        0      0 127.0.0.1:631           0.0.0.0:*               LISTEN      1181/cupsd      
tcp        0      0 0.0.0.0:1723            0.0.0.0:*               LISTEN      1110/pptpd      
tcp        0      0 127.0.0.1:3306          0.0.0.0:*               LISTEN      1172/mysqld     
tcp6       0      0 :::80                   :::*                    LISTEN      1253/apache2    
tcp6       0      0 :::22                   :::*                    LISTEN      929/sshd        
tcp6       0      0 ::1:631                 :::*                    LISTEN      1181/cupsd      
udp        0      0 0.0.0.0:52537           0.0.0.0:*                           960/avahi-daemon: r
udp        0      0 0.0.0.0:68              0.0.0.0:*                           1834/dhclient   
udp        0      0 0.0.0.0:69              0.0.0.0:*                           3556/xinetd     
udp        0      0 0.0.0.0:5353            0.0.0.0:*                           960/avahi-daemon: r
Quote:
Originally Posted by acid_kewpie View Post
If you've read the manual then you'll surely already know about the -u option.
I have read it, but there is no -u option

Last edited by lesca; 02-26-2011 at 05:31 AM.
 
Old 02-26-2011, 06:07 AM   #4
lesca
Member
 
Registered: Sep 2010
Posts: 58

Original Poster
Rep: Reputation: 0
Thank you acid_kewpie anyway.
I read the "xinetd" manual, and now I know how does it work.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Create user add file with default password and force user to change it? Morgandy Linux - Newbie 3 02-02-2010 05:06 PM
How do i change to super user then revert back to ordinary user ,using shell script? wrapster Solaris / OpenSolaris 6 03-18-2009 03:37 AM
samba(global security=user) useful tools for client.ex: user change password. hocheetiong Linux - Newbie 1 03-18-2008 09:20 AM
Help! Cannot Add a User to User Manager or Change Root Password lennysokol Linux - General 2 06-25-2005 09:59 AM
what is the command to make a user change their password after creating a new user? naweenio Linux - Newbie 7 01-05-2005 07:07 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie

All times are GMT -5. The time now is 05:48 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration