[omniORB] Running omniNames as a non-priviledged user?
JHJE (Jan Holst Jensen)
jhje at novonordisk.com
Mon Dec 8 11:07:17 GMT 2003
> omniNames has absolutely no reason for running with root
> permissions,
> quite the contrary. Maybe you should take a look at the init scripts
> for a web server like apach. omniNames provides a service with quite
> similar usage. Basically anyone can send just about anything
> to it, and
> the service does not require access to any priviledged resources
> to perform its work.
Indeed. These are my scripts on RedHat 7.1 - all omniORB related stuff
runs as the 'omni' user. Don't think I've ever run omniNames as root on
that machine (re the /var/... permissions issues), but I can't say that
I am 100% sure of that.
[root at sc9 rc.d]# cat /etc/rc.d/rc.local
[...bla, bla, bla...]
su - omni --command="source start_omniNames.sh"
[root at sc9 rc.d]#
[root at sc9 rc.d]# cat /home/omni/start_omniNames.sh
source set_omni_env.sh
omniNames &
[root at sc9 rc.d]#
[root at sc9 rc.d]# cat /home/omni/set_omni_env.sh
export LD_LIBRARY_PATH=/home/omni/omniORB-4.0.0/build/lib
export OMNINAMES_LOGDIR=/home/omni
export OMNIORB_CONFIG=/home/omni/corba.cfg
[root at sc9 rc.d]#
Cheers
-- Jan Holst Jensen, Novo Nordisk A/S, Denmark
More information about the omniORB-list
mailing list