do i need these users? | Unix Linux Forums | Solaris

  Go Back    


Solaris The Solaris Operating System, usually known simply as Solaris, is a Unix-based operating system introduced by Sun Microsystems. The Solaris OS is now owned by Oracle.

do i need these users?

Solaris


Closed Thread    
 
Thread Tools Search this Thread Display Modes
    #1  
Old 04-11-2006
csaunders csaunders is offline
Registered User
 
Join Date: Sep 2003
Last Activity: 27 February 2010, 3:28 PM EST
Location: Arlington, VA
Posts: 162
Thanks: 0
Thanked 1 Time in 1 Post
do i need these users?

uucp:x:5:5:uucp Admin:/usr/lib/uucp:
nuucp:x:9:9:uucp Admin:/var/spool/uucppublic:/usr/lib/uucp/uucico
smmsp:x:25:25:SendMail Message Submission Program:/:
listen:x:37:4:Network Admin:/usr/net/nls:
nobody:x:60001:60001:Nobody:/:
noaccess:x:60002:60002:No Access User:/:
nobody4:x:65534:65534:SunOS 4.x Nobody:/:



I have no idea what any of these accounts do... Would anyone find it unwise to remove these from the system?
Sponsored Links
    #2  
Old 04-11-2006
rhfrommn rhfrommn is offline Forum Advisor  
Registered User
 
Join Date: Nov 2003
Last Activity: 25 January 2012, 5:08 PM EST
Location: Minnesota
Posts: 447
Thanks: 0
Thanked 2 Times in 2 Posts
I would recommend against deleting those. They are all system accounts used for various purposes. For example, listen is the network listener daemon that monitors your system for requests coming in over the network. Turn that off and all of a sudden your box will be unable to accept connections over the network.

There is no harm to leaving these in place, and removing them could cause a variety of problems. Even if you're sure you don't use one of them, I would imagine removing a system account like that could cause future problems when trying to apply patches to your machine which try to update files related to the removed account.

If your concern is security related, definitely turn off the services you don't want in inetd.conf or (or using inetadm in Solaris 10). But I wouldn't remove the related system accounts.
Sponsored Links
    #3  
Old 04-11-2006
csaunders csaunders is offline
Registered User
 
Join Date: Sep 2003
Last Activity: 27 February 2010, 3:28 PM EST
Location: Arlington, VA
Posts: 162
Thanks: 0
Thanked 1 Time in 1 Post
Quote:
Originally Posted by rhfrommn
I would recommend against deleting those. They are all system accounts used for various purposes. For example, listen is the network listener daemon that monitors your system for requests coming in over the network. Turn that off and all of a sudden your box will be unable to accept connections over the network.

There is no harm to leaving these in place, and removing them could cause a variety of problems. Even if you're sure you don't use one of them, I would imagine removing a system account like that could cause future problems when trying to apply patches to your machine which try to update files related to the removed account.

If your concern is security related, definitely turn off the services you don't want in inetd.conf or (or using inetadm in Solaris 10). But I wouldn't remove the related system accounts.
yep im in agreement with you... completley.. but i wanted a second opinon...
    #4  
Old 04-11-2006
dsbeerf's Avatar
dsbeerf dsbeerf is offline
Registered User
 
Join Date: Dec 2005
Last Activity: 20 July 2008, 12:55 AM EDT
Location: Chicago, IL USA
Posts: 58
Thanks: 0
Thanked 0 Times in 0 Posts
While it is not necessary, it is recommended that you get rid of the 'UUCP' users. [uucp & nuucp]
Since they belong to a 'system' that is RARELY used.

You do this by executing the 'pkgrm' command for the two UUCP packages: SUNWbnuu && SUNWbnur.

Which (respectively) are 'Basic Networking Utilities (User)' and 'Basic Networking Utilities (Root)'.
[Remove in that order.]

They are usually considered security risks, and are really not much use unless there is a modem attached to the computer.


The 'nobody && noaccess' users are sometimes used as IDs to run certain processed as, to make the processes less likely to cause harm if 'hacked'.

Netscape used to run the 'httpd' as 'nobody' by default, some folks run Apache as that user.

The 'smmsp' user is what sendmail runs it's 'listen' process as, and the 'listen' user is a left over from the AT&T System V Release 4 OS (which was the original 'root OS' that Solaris grew out of).
The 'listen' user no longer is used, BUT, as you said, there might be 'stuff' lingering around that requires it.

Last edited by dsbeerf; 04-11-2006 at 01:54 PM..
Sponsored Links
Closed Thread

Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes

More UNIX and Linux Forum Topics You Might Find Helpful
Thread Thread Starter Forum Replies Last Post
Showing all users in 'users' and 'top' commands shoaibjameel123 Red Hat 1 02-08-2012 12:57 AM
To restrict the users not to change the passwords for NIS users Sharath Kumar Solaris 1 12-06-2010 07:51 PM
Limiting SFTP Users While Not Limiting Regular Users? Emancipator HP-UX 2 03-24-2009 04:42 PM
ban the users... gajju UNIX for Advanced & Expert Users 4 09-10-2008 03:08 AM
users of a particular dir narsing UNIX for Dummies Questions & Answers 1 02-07-2006 07:34 AM



All times are GMT -4. The time now is 01:52 PM.