Date: Sat, 26 May 2018 20:34:18 +0000 From: bugzilla-noreply@freebsd.org To: elastic@FreeBSD.org Subject: maintainer-feedback requested: [Bug 228519] sysutils/beats should probably run a specific `beats' user Message-ID: <bug-228519-37421-u7EswFnlvh@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-228519-37421@https.bugs.freebsd.org/bugzilla/> References: <bug-228519-37421@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
Bugzilla Automation <bugzilla@FreeBSD.org> has asked freebsd-elastic mailing list <elastic@FreeBSD.org> for maintainer-feedback: Bug 228519: sysutils/beats should probably run a specific `beats' user https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D228519 --- Description --- the *beats daemons should probably not run as root Running as nobody is not correct since the daemons own files in /var/db/beats/*beat. Hence the correct way is probably to create a `beats' = user and ditto group. That way, admins can allow the beats group read access to = log files that are not world readable, for example.=20 Thoughs on this? Palle
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-228519-37421-u7EswFnlvh>