By default Hobbit installs with its log reading module SUID root, so that it can read root-owned logfiles.
-Charles
T.J. Yang wrote:
Cetainly, I once implemented a bb external module that was able to retrieve informaton own by roo but using PowerBroker.
If I am going to do it again (which looks like I need to), I will try to drop PowerBroker
and using sudo with sudoers on ldap(R1) for one central access control.
Regards
R1: http://www.courtesan.com/sudo/readme_ldap.html
tj
----- Original Message ----- From: "Craig Cook" <user-618593604956@xymon.invalid>
To: <user-ae9b8668bcde@xymon.invalid>
Sent: Wednesday, October 18, 2006 11:47 PM
Subject: [hobbit] log permissions
Is there a way to tell hobbit to use sudo to read a log file?
I want to monitor a log file owned by root, rw for root, nothing for anyone else. It is owned by an application that rolls it and resets permissions. I don't want to mess with the app.
I can write a cron job to check and set permissions, but that is not ideal.
Thanks
Craig Cook
--
Systems Monitoring Consulting and Support Services
http://www.cookitservices.com