How about a multiuser Puppy derivative?

For talk and support relating specifically to Puppy derivatives
Post Reply
Message
Author
User avatar
Springer
Posts: 52
Joined: Tue 22 Aug 2006, 16:25
Location: Austin, TX

How about a multiuser Puppy derivative?

#1 Post by Springer »

I'm looking for a multiuser Puppy derivative for a small embedded server (no gui) application on e-box 2300 hardware.

IIRC, Grafpup has multiuser support, but being graphics-heavy, it's not necessarily the best starting place.

Are there other multiuser Puppy variants? Any good recommendations for embedded Puppy booting off CF card?

User avatar
Springer
Posts: 52
Joined: Tue 22 Aug 2006, 16:25
Location: Austin, TX

#2 Post by Springer »

I should clarify: by multi-user, I mean supporting non-root users with limited privileges.

This is more for security concerns in my application than to actually support multiple simultaneous users, although that might happen.

GuestToo
Puppy Master
Posts: 4083
Joined: Wed 04 May 2005, 18:11

#3 Post by GuestToo »

Xampp must start running as root ... it automatically runs the Apache server as user nobody, with limited privileges

so if someone were able to get into your system through the web server, they would have the same privileges as the server, that is the privileges that "nobody" has, which is very limited

in most Linux distros, an unprivileged user can su to root ... in standard Puppy, the suid bit is not set on tinylogin, so "nobody" can not su to root, even if a root password were set and the intruder knew the password

my Monkey web server package works the same way ... it starts as root and then runs the server as user nobody (if you don't start the server as root, the server can not use the lower port numbers, like port 80 and port 21)

User avatar
Gekko
Posts: 443
Joined: Sat 22 Jul 2006, 09:57
Location: Sydney, New South Wales

#4 Post by Gekko »

install the "shadow" package from a tgz. This installs a real su, login and adds useradd, groupadd, etc. I've been using it for sshd. The only thing it can't do is load X through other users.

raffy
Posts: 4798
Joined: Wed 25 May 2005, 12:20
Location: Manila

user nobody

#5 Post by raffy »

Look for onebone (no X) and add your server.

As G2 said, user "nobody" is the one used by servers generally, even if it gets started by root.

There is one issue here, which is that Puppy occasionally reverts ownership of the files in htdocs to root. Is there a way of preventing this?
Puppy user since Oct 2004. Want FreeOffice? [url=http://puppylinux.info/topic/freeoffice-2012-sfs]Get the sfs (English only)[/url].

GuestToo
Puppy Master
Posts: 4083
Joined: Wed 04 May 2005, 18:11

#6 Post by GuestToo »

you could try setting the file permissions to read-only

you could set the default ownership and/or permissions of the files from a script, maybe every time the server is started, something like this:

chown -R nobody:nobody /root/htdocs/*
exec lampp start

Post Reply