[Pkg-zenoss-team] Re: [Zenoss] #1446: Use of sudo introduces
unnecessary security risk
Zenoss
trac at zenoss.org
Thu May 10 18:47:48 UTC 2007
#1446: Use of sudo introduces unnecessary security risk
----------------------+-----------------------------------------------------
Reporter: zenoss | Owner: ecn
Type: defect | Status: new
Priority: blocker | Milestone: zenoss-2.0
Component: All | Version: 1.8.2
Resolution: | Keywords: security
----------------------+-----------------------------------------------------
Comment (by zenoss):
If you're looking for something you can use as root to start processes as
zenoss user - there's no need to reinvent the wheel, as there're enough
tools available to do this.
Debian uses start-stop-daemon ususally, but if you do it a right even a
normal su will do the job, although the use of start-stop-daemon sounds
much better in my ears, especially while thinking about #1442.
Only if you're using the zenoss user account to start processes which are
supposed to run under uid 0 - then you need to find a safe way to become
root.
--
Ticket URL: <http://dev.zenoss.org/trac/ticket/1446#comment:3>
Zenoss <http://example.com/>
Zenoss Monitoring System
More information about the Pkg-zenoss-team
mailing list