Mailing List Archive: Gentoo: Security

Running app-admin/syslog-ng without root privileges

Index | Next | Previous | View Threaded

gentoosiast at yandex

Jun 17, 2008, 1:46 AM

Post #1 of 2 (791 views)
Permalink

Running app-admin/syslog-ng without root privileges

Hi,

I am trying to run syslog-ng v1.6.8 without root privileges, under
dedicated account. All goes fine, except messages from kernel buffer
/proc/kmsg. I'm not surprised, because /proc/kmsg have permission bits
set to 0400 and owner:group to root:root. As I know in good old
app-admin/sysklogd same goal accomplished by actually running two
processes: one which reads from /proc/kmsg under root privileges &
another one which reads from /dev/log and does everything else under
dedicated non-root account. May be we need to ask syslog-ng authors to
implement the same scheme as in sysklogd?

Thanks in advance.

--
gentoo-security [at] gentoo mailing list

antiwmac at gmail

Nov 16, 2005, 3:13 AM

Post #2 of 2 (719 views)
Permalink

Re: Running app-admin/syslog-ng without root privileges [In reply to]

If its safe box you can really trust no one is going to pick open your
box you can set SUID for that.. but.. it is not the best thing to do..
maybe the worse thing to do.

--
Int'l Anti-Microsoft Assn. Japan/S'pore Dept.
fsck /dev/urandom;
Taka John Brunkhorst
antiwmac [at] gmail

--
gentoo-security [at] gentoo mailing list

Index | Next | Previous | View Threaded

Interested in having your list archived? Contact Gossamer Threads