[Samba] Samba as nonroot

Gerald (Jerry) Carter jerry at samba.org
Wed May 14 12:38:51 GMT 2008


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Michael Heydon wrote:
| lordm at stat.ufl.edu wrote:
|> Hi,
|>
|> Im trying to run samba as a non-root user and I was wondering if this is
|> even possible
| No, it's not.
|
|> and if not what is preventing it from being ran as a normal
|> user??
|>
| You couldn't bind to privileged ports would be the big one. You might be
| able to modify the source so it runs on different ports (although that
| would mean windows systems couldn't connect, you might be able to coax
| another samba machine into it), you would then have issues with
| permissions (you couldn't suid/sgid to the connecting user).

Tha main reason smbd has to run as root is that it changes
the euid of the process when performing certain operations.
For example, opening as file is done as the user but sending
a message to another smbd [rocess has to be done as root.






cheers, jerry
- --
=====================================================================
Samba                                    ------- http://www.samba.org
Likewise Software          ---------  http://www.likewisesoftware.com
"What man is a man who does not make the world better?"      --Balian
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.2 (Darwin)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFIKt1bIR7qMdg1EfYRAvAWAJ9ywd3X0nRh9ugqLNsAk3WV2I9pGwCdFoqD
H+D1xhOYMhbpnp8FOlhWVaA=
=+Zy7
-----END PGP SIGNATURE-----


More information about the samba mailing list