why run a service as a system user?Changing user and group ID system wide (including file system attributes)?Is it possible to log in in a host with an user created for programs like apache or postgreSQL?OpenSSH, chroot user: Root needs to own the user directory, is there any consequence?Proper location to install servicesWhat mechanism prevents any user from accessing any other user's files via root?Why does transmission adds a new user to the system?Cron shell ignores runuser command - why?Why can't regular users create and manage user groups?Reading home folder of old computer in a new computerWhat permissions are required to see USB langid as a user?

Is a public company able to check out who owns its shares in very detailed format?

I gave my characters names that are exactly like another book. Is it a problem?

What is this old "lemon-squeezer" shaped pan

Variation in the spelling of word-final M

Commutator subgroup of Heisenberg group.

Are there any double stars that I can actually see orbit each other?

how to generate correct single and double quotes in tex

Why do candidates not quit if they no longer have a realistic chance to win in the 2020 US presidents election

Should you avoid redundant information after dialogue?

Krazy language in Krazy Kat, 25 July 1936

HackerRank: Electronics Shop

Doing research in academia and not liking competition

What is the German equivalent of 干物女 (dried fish woman)?

Why do legislative committees exist?

Did the Shuttle's rudder or elevons operate when flown on its carrier 747?

Hot object in a vacuum

Number of optically active compounds among the products of ozonolysis

Why does ffmpeg choose 10+20+20ms instead of an even 16ms for 60fps gifs?

Asking for higher salary after I increased my initial figure

As a DM, how to avoid unconscious metagaming when dealing with a high AC character?

Why doesn't Anakin's lightsaber explode when it's chopped in half on Geonosis?

Do native speakers use ZVE or CPU?

Nested-Loop-Join: How many comparisons and how many pages-accesses?

why run a service as a system user?



why run a service as a system user?


Changing user and group ID system wide (including file system attributes)?Is it possible to log in in a host with an user created for programs like apache or postgreSQL?OpenSSH, chroot user: Root needs to own the user directory, is there any consequence?Proper location to install servicesWhat mechanism prevents any user from accessing any other user's files via root?Why does transmission adds a new user to the system?Cron shell ignores runuser command - why?Why can't regular users create and manage user groups?Reading home folder of old computer in a new computerWhat permissions are required to see USB langid as a user?






.everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty,.everyoneloves__bot-mid-leaderboard:empty margin-bottom:0;








3















I have a general question about the UNIX world. I am currently running Ubuntu at home and installed transmission on a device and it runs as and saves files as transmission-debian user. I am wondering if it makes sense for me to change this to my own user so it easier to interact with files and I don't need to sudo? Why would this be a bad idea to do?






ubuntu files users transmission







share|improve this question









New contributor



ScipioAfricanus is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.

























    3















    I have a general question about the UNIX world. I am currently running Ubuntu at home and installed transmission on a device and it runs as and saves files as transmission-debian user. I am wondering if it makes sense for me to change this to my own user so it easier to interact with files and I don't need to sudo? Why would this be a bad idea to do?






    ubuntu files users transmission







    share|improve this question









    New contributor



    ScipioAfricanus is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
    Check out our Code of Conduct.





















      3












      3








      3








      I have a general question about the UNIX world. I am currently running Ubuntu at home and installed transmission on a device and it runs as and saves files as transmission-debian user. I am wondering if it makes sense for me to change this to my own user so it easier to interact with files and I don't need to sudo? Why would this be a bad idea to do?






      ubuntu files users transmission







      share|improve this question









      New contributor



      ScipioAfricanus is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
      Check out our Code of Conduct.











      I have a general question about the UNIX world. I am currently running Ubuntu at home and installed transmission on a device and it runs as and saves files as transmission-debian user. I am wondering if it makes sense for me to change this to my own user so it easier to interact with files and I don't need to sudo? Why would this be a bad idea to do?






      ubuntu files users transmission




      ubuntu files users transmission






      share|improve this question









      New contributor



      ScipioAfricanus is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
      Check out our Code of Conduct.










      share|improve this question









      New contributor



      ScipioAfricanus is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
      Check out our Code of Conduct.








      share|improve this question




      share|improve this question








      edited 6 hours ago









      Jeff Schaller

      47.6k11 gold badges69 silver badges154 bronze badges




      47.6k11 gold badges69 silver badges154 bronze badges






      New contributor



      ScipioAfricanus is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
      Check out our Code of Conduct.








      asked 8 hours ago









      ScipioAfricanusScipioAfricanus

      183 bronze badges




      183 bronze badges




      New contributor



      ScipioAfricanus is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
      Check out our Code of Conduct.




      New contributor




      ScipioAfricanus is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
      Check out our Code of Conduct.






















          1 Answer
          1






          active

          oldest

          votes


















          8














          The main reason for the recommendation of running Transmission as its own dedicated system user rather than your user is that, if the software has a vulnerability that allows exploits that will expose files outside of its configured directory, then it will not end up exposing the possibly sensitive files from your home directory, since Linux itself will prevent that kind of access through the basic permissions.



          In order to make it easier to manage the files in Transmission's directory with your regular user, you should consider adding your user to the debian-transmission group, which is the group that owns the files in the Transmission directory, and has (or at least should have) read/write access to that directory and the files within it.



          The Ubuntu howto suggests this command (slightly adapted to get your user from an environment variable):



          sudo usermod -a -G debian-transmission "$USER"


          Hopefully this will make it easier for you to manage the files downloaded with Transmission, while still keeping it running under its own dedicated system user, for better security.






          share|improve this answer

























            Your Answer








            StackExchange.ready(function()
            var channelOptions =
            tags: "".split(" "),
            id: "106"
            ;
            initTagRenderer("".split(" "), "".split(" "), channelOptions);

            StackExchange.using("externalEditor", function()
            // Have to fire editor after snippets, if snippets enabled
            if (StackExchange.settings.snippets.snippetsEnabled)
            StackExchange.using("snippets", function()
            createEditor();
            );

            else
            createEditor();

            );

            function createEditor()
            StackExchange.prepareEditor(
            heartbeatType: 'answer',
            autoActivateHeartbeat: false,
            convertImagesToLinks: false,
            noModals: true,
            showLowRepImageUploadWarning: true,
            reputationToPostImages: null,
            bindNavPrevention: true,
            postfix: "",
            imageUploader:
            brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
            contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
            allowUrls: true
            ,
            onDemand: true,
            discardSelector: ".discard-answer"
            ,immediatelyShowMarkdownHelp:true
            );



            );






            ScipioAfricanus is a new contributor. Be nice, and check out our Code of Conduct.









            draft saved

            draft discarded


















            StackExchange.ready(
            function ()
            StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f530154%2fwhy-run-a-service-as-a-system-user%23new-answer', 'question_page');

            );

            Post as a guest















            Required, but never shown

























            1 Answer
            1






            active

            oldest

            votes








            1 Answer
            1






            active

            oldest

            votes









            active

            oldest

            votes






            active

            oldest

            votes









            8














            The main reason for the recommendation of running Transmission as its own dedicated system user rather than your user is that, if the software has a vulnerability that allows exploits that will expose files outside of its configured directory, then it will not end up exposing the possibly sensitive files from your home directory, since Linux itself will prevent that kind of access through the basic permissions.



            In order to make it easier to manage the files in Transmission's directory with your regular user, you should consider adding your user to the debian-transmission group, which is the group that owns the files in the Transmission directory, and has (or at least should have) read/write access to that directory and the files within it.



            The Ubuntu howto suggests this command (slightly adapted to get your user from an environment variable):



            sudo usermod -a -G debian-transmission "$USER"


            Hopefully this will make it easier for you to manage the files downloaded with Transmission, while still keeping it running under its own dedicated system user, for better security.






            share|improve this answer



























              8














              The main reason for the recommendation of running Transmission as its own dedicated system user rather than your user is that, if the software has a vulnerability that allows exploits that will expose files outside of its configured directory, then it will not end up exposing the possibly sensitive files from your home directory, since Linux itself will prevent that kind of access through the basic permissions.



              In order to make it easier to manage the files in Transmission's directory with your regular user, you should consider adding your user to the debian-transmission group, which is the group that owns the files in the Transmission directory, and has (or at least should have) read/write access to that directory and the files within it.



              The Ubuntu howto suggests this command (slightly adapted to get your user from an environment variable):



              sudo usermod -a -G debian-transmission "$USER"


              Hopefully this will make it easier for you to manage the files downloaded with Transmission, while still keeping it running under its own dedicated system user, for better security.






              share|improve this answer

























                8












                8








                8







                The main reason for the recommendation of running Transmission as its own dedicated system user rather than your user is that, if the software has a vulnerability that allows exploits that will expose files outside of its configured directory, then it will not end up exposing the possibly sensitive files from your home directory, since Linux itself will prevent that kind of access through the basic permissions.



                In order to make it easier to manage the files in Transmission's directory with your regular user, you should consider adding your user to the debian-transmission group, which is the group that owns the files in the Transmission directory, and has (or at least should have) read/write access to that directory and the files within it.



                The Ubuntu howto suggests this command (slightly adapted to get your user from an environment variable):



                sudo usermod -a -G debian-transmission "$USER"


                Hopefully this will make it easier for you to manage the files downloaded with Transmission, while still keeping it running under its own dedicated system user, for better security.






                share|improve this answer













                The main reason for the recommendation of running Transmission as its own dedicated system user rather than your user is that, if the software has a vulnerability that allows exploits that will expose files outside of its configured directory, then it will not end up exposing the possibly sensitive files from your home directory, since Linux itself will prevent that kind of access through the basic permissions.



                In order to make it easier to manage the files in Transmission's directory with your regular user, you should consider adding your user to the debian-transmission group, which is the group that owns the files in the Transmission directory, and has (or at least should have) read/write access to that directory and the files within it.



                The Ubuntu howto suggests this command (slightly adapted to get your user from an environment variable):



                sudo usermod -a -G debian-transmission "$USER"


                Hopefully this will make it easier for you to manage the files downloaded with Transmission, while still keeping it running under its own dedicated system user, for better security.







                share|improve this answer












                share|improve this answer



                share|improve this answer










                answered 7 hours ago









                filbrandenfilbranden

                12.4k2 gold badges22 silver badges52 bronze badges




                12.4k2 gold badges22 silver badges52 bronze badges




















                    ScipioAfricanus is a new contributor. Be nice, and check out our Code of Conduct.









                    draft saved

                    draft discarded


















                    ScipioAfricanus is a new contributor. Be nice, and check out our Code of Conduct.












                    ScipioAfricanus is a new contributor. Be nice, and check out our Code of Conduct.











                    ScipioAfricanus is a new contributor. Be nice, and check out our Code of Conduct.














                    Thanks for contributing an answer to Unix & Linux Stack Exchange!


                    • Please be sure to answer the question. Provide details and share your research!

                    But avoid


                    • Asking for help, clarification, or responding to other answers.

                    • Making statements based on opinion; back them up with references or personal experience.

                    To learn more, see our tips on writing great answers.




                    draft saved


                    draft discarded














                    StackExchange.ready(
                    function ()
                    StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f530154%2fwhy-run-a-service-as-a-system-user%23new-answer', 'question_page');

                    );

                    Post as a guest















                    Required, but never shown





















































                    Required, but never shown














                    Required, but never shown












                    Required, but never shown







                    Required, but never shown

































                    Required, but never shown














                    Required, but never shown












                    Required, but never shown







                    Required, but never shown







                    -

                    Popular posts from this blog

                    Invision Community Contents History See also References External links Navigation menuProprietaryinvisioncommunity.comIPS Community ForumsIPS Community Forumsthis blog entry"License Changes, IP.Board 3.4, and the Future""Interview -- Matt Mecham of Ibforums""CEO Invision Power Board, Matt Mecham Is a Liar, Thief!"IPB License Explanation 1.3, 1.3.1, 2.0, and 2.1ArchivedSecurity Fixes, Updates And Enhancements For IPB 1.3.1Archived"New Demo Accounts - Invision Power Services"the original"New Default Skin"the original"Invision Power Board 3.0.0 and Applications Released"the original"Archived copy"the original"Perpetual licenses being done away with""Release Notes - Invision Power Services""Introducing: IPS Community Suite 4!"Invision Community Release Notes

                    Image
                    Internet forum softwarePHP software Internet communityPHPMySQLdatabase management systemInternet forumCharles WarnerMatt MechamJarvis Entertainment GroupIkonboardInvisionFreeAjaxIPS Community ForumsIPS Community Forumsthis blog entry Invision Community From Wikipedia, the free encyclopedia Jump to navigation Jump to search Invision Community Developer(s) Invision Power Services Stable release 4.4.6 / August 19, 2019 ; 34 days ago  ( 2019-08-19 ) Platform PHP / MySQL Type Forum software License Proprietary Website invisioncommunity.com Invision Community (previously known as IPS Community Suite ) is primarily an Internet community software produced by Invision Power Services, Inc. It is written in PHP and uses MySQL as a database management system. Invision Power Services sell applications that each can be bought and installed separately in addition to the Suite, the most widely known being the Internet forum software Invision Power Board. Invisi
                    Read more

                    Canceling a color specificationRandomly assigning color to Graphics3D objects?Default color for Filling in Mathematica 9Coloring specific elements of sets with a prime modified order in an array plotHow to pick a color differing significantly from the colors already in a given color list?Detection of the text colorColor numbers based on their valueCan color schemes for use with ColorData include opacity specification?My dynamic color schemes

                    Image
                    Would it be easier to colonise a living world or a dead world? Postal services in Italy - Poste Italiane vs. Friendpost vs. GPS What is /dev/null and why can't I use hx on it? Why are engines with carburetors hard to start in cold weather? How to make a gift without seeming creepy? Without exposing his identity, did Roy help his parents with money so that they can afford to stay in their home? Does the Creighton Method of Natural Family Planning have a failure rate of 3.2% or less? How do I break the broom in Untitled Goose Game? Had there been instances of national states banning harmful imports before the mid-19th C Opium Wars? D&D Monsters and Copyright Is sleeping on the groud in cold weather better than on an air mattress? Transiting through Switzerland by coach with lots of cash quadratic equations on 2 by 2 matrices Always Lubricate Skewers? I pay for a service, but I miss the broadcast Iron-age tools, is there a way to extract heavy metals
                    Read more

                    Ласкавець круглолистий Зміст Опис | Поширення | Галерея | Примітки | Посилання | Навігаційне меню58171138361-22960890446Bupleurum rotundifoliumEuro+Med PlantbasePlants of the World Online — Kew ScienceGermplasm Resources Information Network (GRIN)Ласкавецькн. VI : Літери Ком — Левиправивши або дописавши її

                    Image
                    ЛаскавецьФлора УкраїниФлора ЄвропиФлора АфрикиФлора АзіїРослини, описані 1753 ОкружковіОднорічнатрав'яниста рослинаАфриціЄвропіАзіїУкраїні Ласкавець круглолистий Матеріал з Вікіпедії — вільної енциклопедії. Перейти до навігації Перейти до пошуку ? Ласкавець круглолистий Біологічна класифікація Домен: Ядерні (Eukaryota) Царство: Зелені рослини (Viridiplantae) Відділ: Вищі рослини (Streptophyta) — Судинні (Tracheophyta) — Покритонасінні (Angiospermae) — Евдикоти (Eudicots) — Айстериди (Asterids) Порядок: Аралієцвіті (Apiales) Родина: Окружкові (Apiaceae) Підродина: Селерові (Apioideae) Триба: Bupleureae Рід: Ласкавець ( Bupleurum ) Вид: Ласкавець круглолистий Біноміальна назва Bupleurum rotundifolium L., 1753 Посилання Вікісховище: Bupleurum rotundifolium Віківиди: Bupleurum rotundifolium EOL: 581711 IPNI: 38361-2 ITIS: 29608 NCBI: 90446 Ласкавець круглолистий [1] [1] [2] ( Bupleurum rotundifolium ) — вид рослин родини Окружкові (Apiaceae)
                    Read more