Received: with LISTAR (v1.0.0; list gopher); Mon, 21 Jan 2002 21:27:38 -0500 (EST) Return-Path: Delivered-To: gopher@complete.org Received: from siva.heatdeath.org (h24-70-205-29.gv.shawcable.net [24.70.205.29]) by pi.glockenspiel.complete.org (Postfix) with ESMTP id 766C23B80B for ; Mon, 21 Jan 2002 21:27:37 -0500 (EST) Received: from emanuel by siva.heatdeath.org with local (Exim 3.22 #1) id 16Sqeu-00030P-00 for gopher@complete.org; Mon, 21 Jan 2002 18:27:36 -0800 Date: Mon, 21 Jan 2002 18:27:36 -0800 From: Emanuel Borsboom To: gopher@complete.org Subject: [gopher] Re: Security issues in Gopher? Message-ID: <20020121182736.D10244@siva.heatdeath.org> Mail-Followup-To: gopher@complete.org References: <87pu43g046.fsf@complete.org> Mime-Version: 1.0 Content-type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: ; from rhahn@golden.net on Mon, Jan 21, 2002 at 08:46:34PM -0500 Content-Transfer-Encoding: 8bit X-archive-position: 375 X-listar-version: Listar v1.0.0 Sender: gopher-bounce@complete.org Errors-to: gopher-bounce@complete.org X-original-sender: em@nuel.ca Precedence: bulk Reply-to: gopher@complete.org List-help: List-unsubscribe: List-software: Listar version 1.0.0 X-List-ID: Gopher List-subscribe: List-owner: List-post: List-archive: X-list: gopher > can't really do a whole lot of damage) so I'm wondering what it > would take for me to run gopherd as nobody - and better still, why > people are running it as root. I have it running as nobody and it works just fine. I use this syntax to start it: /usr/local/sbin/gopherd -l /usr/local/var/log/gopherd.log -u nobody /usr/local/var/gopher-data 70 This is with an older version of gopherd, YMMV. It's pretty safe to run gopherd as root because it chroots to your data directory. I preferred not to do this, though, because I wanted to write the log elsewhere. -- Emanuel Borsboom http://www.nuel.ca/