Find the answer to your Linux question:
Results 1 to 7 of 7
Hi I want to ask a question maybe a stupid one Here what i understand saying linux user : i can create various users for example for me , for ...
Enjoy an ad free experience by logging in. Not a member yet? Register.
  1. #1
    Just Joined!
    Join Date
    Jul 2010
    Posts
    15

    [SOLVED] Apache


    Hi I want to ask a question maybe a stupid one Here what i understand saying linux user : i can create various users for example for me , for my brother and so on to log in to system. But what does it mean that apache runs under user wwwrun and group www by default . What kind of user is that ? It's explicitly not a user kind that one I know about . Help me to understand please.

    Thanks in advance !

  2. #2
    Just Joined!
    Join Date
    Jul 2010
    Posts
    15
    heyy , anyone response me please I'm waiting 3 days already

  3. #3
    Just Joined!
    Join Date
    Aug 2010
    Posts
    5
    It is just a system account user/group and if you look in /etc/paswd it should not contain a shell to login. You may see something similar to:

    nobody:99:99:Nobody:/:/sbin/nologin

    Just a way for the system to know what user is running what daemon, without being the root user. Hope this helps.

  4. #4
    Just Joined!
    Join Date
    Jul 2010
    Posts
    15
    And how is this increase security ??? I've read that it would be a unsecure to run apache under the root user . Why ??

  5. #5
    Just Joined!
    Join Date
    Aug 2010
    Posts
    5
    You do not want apache running as root, since apache usually runs on port 80, then it would be an easy target for hackers to get into your system. running as another user/group then if a hacker did get in at least they would not have root access to your system. Although a good hacker could still get into your system no matter what, this will at least cause another obstacal to overcome. hope that explains it..

  6. #6
    Linux Engineer Segfault's Avatar
    Join Date
    Jun 2008
    Location
    Acadiana
    Posts
    877
    First and foremost, root is not a user. Root is housekeeper, admin, butler if you want, but not user.
    Why we do not use root account? Because all processes initiated by root run with root rights. For instance, root running a web browser - all it takes is an insecure plugin or security flaw in browser and attacker has full access to your system.
    *nix permissions system is refined over decades. It is designed to protect you. Running an application as root you'll trash it in one swell swoop.

  7. #7
    Just Joined!
    Join Date
    Jul 2010
    Posts
    15
    Thanks guys

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •