Date: Sat, 26 May 2018 20:34:18 +0000 From: bugzilla-noreply@freebsd.org To: ports-bugs@FreeBSD.org Subject: [Bug 228519] sysutils/beats should probably run a specific `beats' user Message-ID: <bug-228519-7788@https.bugs.freebsd.org/bugzilla/>
next in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D228519 Bug ID: 228519 Summary: sysutils/beats should probably run a specific `beats' user Product: Ports & Packages Version: Latest Hardware: Any OS: Any Status: New Severity: Affects Only Me Priority: --- Component: Individual Port(s) Assignee: elastic@FreeBSD.org Reporter: girgen@FreeBSD.org Assignee: elastic@FreeBSD.org Flags: maintainer-feedback?(elastic@FreeBSD.org) the *beats daemons should probably not run as root Running as nobody is not correct since the daemons own files in /var/db/beats/*beat. Hence the correct way is probably to create a `beats' = user and ditto group. That way, admins can allow the beats group read access to = log files that are not world readable, for example.=20 Thoughs on this? Palle --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-228519-7788>