Deutsch English Français Italiano |
<vanfdd$3ftg3$1@dont-email.me> View for Bookmarking (what is this?) Look up another Usenet article |
Path: ...!eternal-september.org!feeder3.eternal-september.org!news.eternal-september.org!.POSTED!not-for-mail From: Joe Beanfish <joebeanfish@nospam.duh> Newsgroups: comp.os.linux.misc Subject: Re: privileged user in RedHat Date: Wed, 28 Aug 2024 15:23:25 -0000 (UTC) Organization: A noiseless patient Spider Lines: 34 Message-ID: <vanfdd$3ftg3$1@dont-email.me> References: <20240828082101.617dadf2@dorfdsl.de> <u82cnVISw_fySlP7nZ2dnZfqnPSdnZ2d@earthlink.com> <20240828120114.258c0432@dorfdsl.de> MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Injection-Date: Wed, 28 Aug 2024 17:23:25 +0200 (CEST) Injection-Info: dont-email.me; posting-host="dd3408451f6eb097cf634a356283efeb"; logging-data="3667459"; mail-complaints-to="abuse@eternal-september.org"; posting-account="U2FsdGVkX1+H6Vsh6DqOLjkFyheFwoyQvoDlSNoz8CU=" User-Agent: Pan/0.146 (Hic habitat felicitas; 8107378 git@gitlab.gnome.org:GNOME/pan.git) Cancel-Lock: sha1:KXH/wowPy8na4BWHOTbjXxpqtxw= Bytes: 2517 On Wed, 28 Aug 2024 12:01:14 +0200, Marco Moock wrote: > On Wed, 28 Aug 2024 03:53:18 -0400 "186282@ud0s4.net" > <186283@ud0s4.net> wrote: > >> On 8/28/24 2:21 AM, Marco Moock wrote: >> > Hello! >> > >> > Is there any definition for the word "privileged user" in the Linux >> > (especially RedHat) environment? >> > >> > I am currently learning RedHat OpenShift and the courses include a >> > question where the answer is that 2 containers run with UID 27 are >> > called privileged. (DO190 ch03s08 if you have access). >> > >> > I am aware that it is common that normal (real people) users start with >> > 1000 ongoing, server process users are below. Is there a difference on >> > the IDs or is that just tradition? >> >> User 'root' is the only, initially, "privileged user". > > > Ok, but what does privileged then mean in the RHEL/ROCP environment? Strictly speaking "privileged user" just means a user with sufficient permissions to perform the task. That user is often root since root can do anything. But it could be a regular user that has been placed into the appropriate group (/etc/group) or configured via SELinux etc.. At the kernel level, there are no special UIDs except 0 for root. For openshift, idk, but these might be helpful https://www.redhat.com/en/blog/a-guide-to-openshift-and-uids https://learn.redhat.com/t5/Containers-DevOps-OpenShift/Container-image-on-the-exam/td-p/35223