I have a process that gets started by a damon running as root, now I want to "downgrade" this process's privileges to those of your average user. Is this possible? If yes how?
PS: Running unix on a mac
Process Management – How to Drop Process Privileges
privilegesprocess
Related Question
- Process in user mode switch to kernel mode. Then the process will have root privileges
- Shell Script – How to Drop Root Privileges
- Bash – Shell/Bash script: Properly drop privileges
- Bash – Executing commands in an elevated bash process by writing to the standard input of its parent script process
- Linux – UID/GID of a process from, when not from the process’s cred pointer
Best Answer
The process itself has to call setuid(2). You should also investigate running it inside chroot(8) if you aren't already. As far as I know, there is no way for root to change the uid of another process.
If the reason you are running it as root is to bind ports, I'd suggest running it as a normal user on a higher port and using ipfw(8) on OS X to forward port 80/443/etc to the higher port:
http://support.crashplanpro.com/doku.php/recipe/forward_port_443_to_pro_server_on_mac_osx