Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Stunnel as non root !!
Top Forums UNIX for Advanced & Expert Users Stunnel as non root !! Post 302825219 by leghorn on Monday 24th of June 2013 01:38:45 AM
Old 06-24-2013
RedHat Stunnel as non root !!
HI

I'm trying to install stunnel as(or in) non-root user.
there are these options setuid and setgid in stunnel.conf ,that by default are "nobody". but u can change them to "user" .. to enable stunnel in non root mode
I tried doing it but no luck.

Please drop in your valuable suggestions

Thanks
 

6 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

Run non-root script as root with non-root environment

All, I want to run a non-root script as the root user with non-root environment variables with crontab. The non-root user would have environment variables for database access such as Oracle or Sybase. The root user does not have the Oracle or Sybase enviroment variables. I thought you could do... (2 Replies)
Discussion started by: bubba112557
2 Replies

2. UNIX for Advanced & Expert Users

stunnel will not start

am tring to start stunnel version 4.05 that come standard with Suse Enterprise 9 CD. I intend to start stunnel as a daemon, I have generate and self signed the certificate using openssl with openssl version 0.9.7d but stunnel will not start up instead I received the following error message ... (1 Reply)
Discussion started by: hassan1
1 Replies

3. SCO

Starting up stunnel on SCO Openserver 5.0.7

Hi there I have compiled a binary of stunnel for SCO Openserver 5.0.7 At the moment the binary is in /u/testroom/sbin/stunnel as root I cd to /u/testroom/sbin and start the stunnel daemon up with ./stunnel The stunnel log shows when users successfully connect or disconnect, so... (1 Reply)
Discussion started by: The_Librarian
1 Replies

4. UNIX for Advanced & Expert Users

Help with Getting Stunnel Running

OS: Sun Solaris 10 (5.10) Stunnel has been installed but when I try to run it, I get a directory permission error. Not sure what it means by 'Not owner' even though that's plain English. I have changed the chroot to a directory (var/tmp) that I'm sure all users have access to so not sure... (0 Replies)
Discussion started by: neapolitan
0 Replies

5. UNIX and Linux Applications

Update CRL in stunnel?

Hi, Does anyone know if there is a way to update CRLs in stunnel, without restarting stunnel? If I copy a new CRL to my CRLPath, it is only used for services (from config file) that hasn't been used yet. Services that has been used at least once does not care about new CRLs... (0 Replies)
Discussion started by: pelig
0 Replies

6. Solaris

Migration of system having UFS root FS with zones root to ZFS root FS

Hi All After downloading ZFS documentation from oracle site, I am able to successfully migrate UFS root FS without zones to ZFS root FS. But in case of UFS root file system with zones , I am successfully able to migrate global zone to zfs root file system but zone are still in UFS root file... (2 Replies)
Discussion started by: sb200
2 Replies

LEARN ABOUT REDHAT

setuid

SETUID(2)						     Linux Programmer's Manual							 SETUID(2)

NAME

       setuid - set user identity

SYNOPSIS

       #include <sys/types.h>
       #include <unistd.h>

       int setuid(uid_t uid);

DESCRIPTION

       setuid  sets the effective user ID of the current process.  If the effective userid of the caller is root, the real and saved user ID's are
       also set.

       Under Linux, setuid is implemented like the POSIX version with the _POSIX_SAVED_IDS feature.  This allows a setuid (other than  root)  pro-
       gram to drop all of its user privileges, do some un-privileged work, and then re-engage the original effective user ID in a secure manner.

       If  the	user is root or the program is setuid root, special care must be taken. The setuid function checks the effective uid of the caller
       and if it is the superuser, all process related user ID's are set to uid.  After this has occurred, it is impossible  for  the  program	to
       regain root privileges.

       Thus, a setuid-root program wishing to temporarily drop root privileges, assume the identity of a non-root user, and then regain root priv-
       ileges afterwards cannot use setuid.  You can accomplish this with the (non-POSIX, BSD) call seteuid.

RETURN VALUE

       On success, zero is returned.  On error, -1 is returned, and errno is set appropriately.

ERRORS

       EPERM  The user is not the super-user, and uid does not match the real or saved user ID of the calling process.

CONFORMING TO

       SVr4, SVID, POSIX.1.  Not quite compatible with the 4.4BSD call, which sets all of the real, saved, and effective user IDs.  SVr4 documents
       an additional EINVAL error condition.

LINUX-SPECIFIC REMARKS
       Linux  has the concept of filesystem user ID, normally equal to the effective user ID.  The setuid call also sets the filesystem user ID of
       the current process.  See setfsuid(2).

       If uid is different from the old effective uid, the process will be forbidden from leaving core dumps.

SEE ALSO

       getuid(2), setreuid(2), seteuid(2), setfsuid(2)

Linux 1.1.36							    1994-07-29								 SETUID(2)
All times are GMT -4. The time now is 11:53 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy