Blog  |  Contact Us
Welcome to the Seapine Software Community Forums. Because these forums are user-to-user based, Seapine technical support does not regularly read or reply to the posts in this forum. For problem reports, suggestions, or feature requests, please visit http://www.seapine.com/support.html.

Printer-friendly copy Email this topic to a friend
Top TestTrack Pro Linux/Unix Installation topic #43

Subject: "Security" Previous topic | Next topic
robinrMon Nov-18-02 11:08 PM
Charter member
7 posts
Click to send email to this author Click to send private message to this authorClick to view this author's profileClick to add this author to your buddy list
"Security"


          

Are there any TTPro-specific issues with running ttpro as non-root (i.e. a ttpro-specific user) or even chroot-ed?

Running services as root is not to my liking.

-- robin


  

Printer-friendly copy | Reply | Reply with quote | Top

Replies to this topic

pburmaTue Nov-19-02 12:46 PM
Charter member
1250 posts
Click to send email to this author Click to send private message to this authorClick to view this author's profileClick to add this author to your buddy listClick to send message via AOL IMClick to send message via ICQ
#1. "RE: Security"
In response to Reply # 0


          

The TestTrack Pro server can be run as a regular non-root user. The ttpro {start|stop} script must still be run as root to start TestTrack.

In the ttpro script you can specify which user you want to start the ttserver daemon, but you must run the ttpro script as root in order to execute a ulimit. That will set the File Descriptor limit to a very high number (like 65K).

If TestTrack is not started this way the FD limit default for the system would prevent you from using more than 2 or 3 active databases. Setting the FD limit will give you a high enough ceiling to create and use 100's of databases.

When changing from a root to a non-root user you also have to change the file ownership on the application directory (ie /var/lib/ttpro/). The app directory and every file and folder in the app directory must be owned by the User who is running the ttserver. Root owned files will not be accessible to the ttserver running as a non-root user.

The ttpro script will be in /etc/rc.d/init.d/ or in /usr/bin/ depending on if you want ttserver to start during boot up.

}>Patrick Burma
Product Specialist
Seapine Software, Inc
support@seapine.com

---------------------------
Patrick Burma
Product Specialist
Seapine Software, Inc
support@seapine.com

  

Printer-friendly copy | Reply | Reply with quote | Top

andyboothTue Dec-18-07 11:11 AM
Member since Dec 18th 2007
1 posts
Click to send email to this author Click to send private message to this authorClick to add this author to your buddy list
#2. "RE: Security"
In response to Reply # 1


          

>The ttpro script will be in /etc/rc.d/init.d/ or in /usr/bin/
>depending on if you want ttserver to start during boot up.

This appears to be no longer the case, the license server script has a user setting :

LSUSERID=root

whereas the ttstudio script doesn't, is there a hidden parameter I can add in to enable a non-root user?

regards
Andy Booth

  

Printer-friendly copy | Reply | Reply with quote | Top

Top TestTrack Pro Linux/Unix Installation topic #43 Previous topic | Next topic
Powered by DCForum+ Version 1.27
Copyright 1997-2003 DCScripts.com
© 2014 Seapine Software, Inc., All rights reserved.