[Pkg-zenoss-team] Re: [Zenoss] #1446: Use of sudo introduces
unnecessary security risk
Zenoss
trac at zenoss.org
Thu May 10 13:52:57 UTC 2007
#1446: Use of sudo introduces unnecessary security risk
----------------------+-----------------------------------------------------
Reporter: zenoss | Owner: edahl
Type: defect | Status: new
Priority: blocker | Milestone: zenoss-2.0
Component: All | Version: 1.8.2
Resolution: | Keywords: security
----------------------+-----------------------------------------------------
Changes (by edahl):
* cc: ecn (added)
Comment:
bernd,
Totally agree we need to get rid of the sudo stuff in 2.0 its the cause
of many of our heartburns. seems like a simple c program with suid is a
good idea to me. ECN what do you think? not sure what the command lie
would look like...
{{{
# all deamons
$ zenossctl status
$ zenossctl start
# one daemon
$ zenossctl zenping status
$ zenossctl zenping start
}}}
Everything would become user zenoss after starting except zenping which
opens and closes its socket so that other ping process packets don't fill
is socket buffer.
--
Ticket URL: <http://dev.zenoss.org/trac/ticket/1446#comment:1>
Zenoss <http://example.com/>
Zenoss Monitoring System
More information about the Pkg-zenoss-team
mailing list