在 Debian 服务器上创建受限用户

Question

这是正确的方法，但您需要指出它是系统用户，这样/etc/shadow就不会有任何老化信息。摘自useradd手册页：

-r, --system

      Create a system account.

      System users will be created with no aging information in /etc/shadow, and their numeric identifiers are choosen in the
      SYS_UID_MIN-SYS_UID_MAX range, defined in /etc/login.defs, instead of UID_MIN-UID_MAX (and their GID counterparts for the creation of
      groups).

      Note that useradd will not create a home directory for such an user, regardless of the default setting in /etc/login.defs
      (CREATE_HOME). You have to specify the -m options if you want a home directory for a system account to be created.

因此，您需要类似以下内容的内容：

useradd -s /usr/sbin/nologin -r -M tomcat

如果需要，您还可以创建一个主目录，也许是属于服务的东西，例如：

useradd -s /usr/sbin/nologin -r -M -d /etc/nginx nginx

Answer 1

这是正确的方法，但您需要指出它是系统用户，这样/etc/shadow就不会有任何老化信息。摘自useradd手册页：

-r, --system

      Create a system account.

      System users will be created with no aging information in /etc/shadow, and their numeric identifiers are choosen in the
      SYS_UID_MIN-SYS_UID_MAX range, defined in /etc/login.defs, instead of UID_MIN-UID_MAX (and their GID counterparts for the creation of
      groups).

      Note that useradd will not create a home directory for such an user, regardless of the default setting in /etc/login.defs
      (CREATE_HOME). You have to specify the -m options if you want a home directory for a system account to be created.

因此，您需要类似以下内容的内容：

useradd -s /usr/sbin/nologin -r -M tomcat

如果需要，您还可以创建一个主目录，也许是属于服务的东西，例如：

useradd -s /usr/sbin/nologin -r -M -d /etc/nginx nginx

在 Debian 服务器上创建受限用户

答案1

相关内容