[opensuse-programming] non-privileged daemon executing root-only commands?
I have a monitoring daemon that I would really prefer to run as non-root, but occasionally it will have to execute 'ipvsadm', which is root-only. I'm thinking this could be done with sudoers? /Per Jessen, Zürich -- To unsubscribe, e-mail: opensuse-programming+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-programming+help@opensuse.org
Hello, On Tue, 15 Jun 2010, Per Jessen wrote:
I have a monitoring daemon that I would really prefer to run as non-root, but occasionally it will have to execute 'ipvsadm', which is root-only. I'm thinking this could be done with sudoers?
your_daemon_user localhost=(root) NOPASSWD:/sbin/ipvsadm -opt arg Or have a look at polkit. HTH, -dnh -- The first time I hear "I dropped my computer in the toilet" is the last support request I listen to at this job. -- Dave -- To unsubscribe, e-mail: opensuse-programming+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-programming+help@opensuse.org
David Haller wrote:
Hello,
On Tue, 15 Jun 2010, Per Jessen wrote:
I have a monitoring daemon that I would really prefer to run as non-root, but occasionally it will have to execute 'ipvsadm', which is root-only. I'm thinking this could be done with sudoers?
your_daemon_user localhost=(root) NOPASSWD:/sbin/ipvsadm -opt arg
Thanks, David - that looks good. /Per Jessen, Zürich -- To unsubscribe, e-mail: opensuse-programming+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-programming+help@opensuse.org
participants (2)
-
David Haller -
Per Jessen