[Pkg-net-snmp-devel] Bug#468577: snmpd don't use correctly option "-g"
Jean-Marc LACROIX
jeanmarc.lacroix at free.fr
Fri Feb 29 16:52:02 UTC 2008
Package: snmpd
Version: 5.2.3-7etch2
hi,
When launching snmpd with following args on a shell with root
logging, ...
/usr/sbin/snmpd -Lsd -Lf /dev/null -u snmp -g grsec_proc -I -smux -p
/var/run/snmpd.pid 127.0.0.1
and ....
grep grsec_proc /etc/group
grsec_proc:x:10001:snmp
and....
-> grep group /etc/nsswitch.conf
roup: files [SUCCESS=return NOTFOUND=continue UNAVAIL=continue
TRYAGAIN=continue] nis
then the group is not parsed correctly and perhaps ignored, so as
my file system /proc is protected by kernel patch, then ....
here is syslog console after startup ...
Feb 29 17:40:21 s_all at d2r2/d2r2 snmpd[6271]: cache has existing timer id.
Feb 29 17:40:21 s_all at d2r2/d2r2 snmpd[6271]: Turning on AgentX master support.
Feb 29 17:40:21 s_all at d2r2/d2r2 snmpd[6271]: NET-SNMP version 5.2.3
Feb 29 17:40:51 s_all at d2r2/d2r2 snmpd[6271]: cannot open /proc/net/dev ...
> sudo ls -altr /proc/net/snmp
-r--r--r-- 1 root grsec_proc 0 2008-02-29 17:38 /proc/net/snmp
If i start snmpd with the numerical value for grsec_proc group, then
snmpd don't send error on syslog
/usr/sbin/snmpd -Lsd -Lf /dev/null -u snmp -g 10001 -I -smux -p
/var/run/snmpd.pid 127.0.0.1
-> sudo ls -altr /proc/net/snmp -n
-r--r--r-- 1 0 10001 0 2008-02-29 17:43 /proc/net/snmp
[
Many thanks in advance if you can correct this problem
best regards.
--
--------------------------------------
-- Jean-Marc LACROIX --
-- mailto : jeanmarc.lacroix at free.fr --
---------------------------------------
More information about the Pkg-net-snmp-devel
mailing list