ALT Linux Bugzilla – #625
dictd server runs as a user with no name
Last modified: 2003-08-25 15:18:28
You need to
before you can comment on or make changes to this bug.
There is no user for dictd, and by default the server runs as
user with a strange numeric ID:
$ ps -A u | fgrep dict
#65534 1030 0.0 0.0 5012 4 ? S Feb07 0:00 dictd 1.5.5: 0/0
$ rpm -q dictd
I think this is bad, because there is no guarantee that no other service uses the same UID as dictd, and so the systm gets less secure.
$ sudo service dictd start
I\'ve raised severity of this PR since the bug is a security policy violation.