From owner-freebsd-hackers@FreeBSD.ORG Mon Jun 23 12:40:08 2014 Return-Path: Delivered-To: freebsd-hackers@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id E72A8A40; Mon, 23 Jun 2014 12:40:07 +0000 (UTC) Received: from smtp.digiware.nl (unknown [IPv6:2001:4cb8:90:ffff::3]) (using TLSv1 with cipher DHE-RSA-CAMELLIA256-SHA (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 7F77F22E6; Mon, 23 Jun 2014 12:40:07 +0000 (UTC) Received: from rack1.digiware.nl (unknown [127.0.0.1]) by smtp.digiware.nl (Postfix) with ESMTP id 3B1CA1534C4; Mon, 23 Jun 2014 14:39:55 +0200 (CEST) X-Virus-Scanned: amavisd-new at digiware.nl Received: from smtp.digiware.nl ([127.0.0.1]) by rack1.digiware.nl (rack1.digiware.nl [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id VWczSRFW5FtZ; Mon, 23 Jun 2014 14:39:50 +0200 (CEST) Received: from [IPv6:2001:4cb8:3:1:a9cc:494a:8827:ca83] (unknown [IPv6:2001:4cb8:3:1:a9cc:494a:8827:ca83]) by smtp.digiware.nl (Postfix) with ESMTP id 375081534C0; Mon, 23 Jun 2014 14:39:50 +0200 (CEST) Message-ID: <53A82008.9050002@digiware.nl> Date: Mon, 23 Jun 2014 14:39:36 +0200 From: Willem Jan Withagen Organization: Digiware Management b.v. User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:24.0) Gecko/20100101 Thunderbird/24.6.0 MIME-Version: 1.0 To: Alfred Perlstein , freebsd-hackers@freebsd.org Subject: Re: Improve cron(8) References: <53A72666.8090101@cox.net> <53A78C13.8030909@freebsd.org> In-Reply-To: <53A78C13.8030909@freebsd.org> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 8bit X-BeenThere: freebsd-hackers@freebsd.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: Technical Discussions relating to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 23 Jun 2014 12:40:08 -0000 On 2014-06-23 4:08, Alfred Perlstein wrote: > On 6/22/14 11:54 AM, John D. Hendrickson and Sara Darnell wrote: >> Eitan Adler wrote: >>> +arch since hackers@ seems to be silent. >>> >>> On 11 June 2014 23:56, Tomek WaƂaszek wrote: >>>> Hello, >>>> I saw on the FreeBSD Ideas page topic about cron :). >>>> I've started updating the 'original' FreeBSD cron from sources to >>>> vixi cron >>>> 4.1. I think (well I hope :P) most of the features that were done in >>>> FreeBSD cron are now ported into vixi cron 4.1, there are unfortunately >>>> some missing features at the moment: >>>> - @every_second - this need to be done >>>> - -s and -o, in vixi cron 4.1 daylight time switches are enabled by >>>> default, at the moment there is no -s and -o options. So you need to >>>> remove >>>> '-s' from the cron rc script >>>> >>>> I've also added one feature from OpenBSD, crontab is poking cron using >>>> unix-domain socket so we don't need to have suid on crontab. >>>> >>>> Path is in the attachment. I'm testing it on my FreeBSD box and it >>>> looks >>>> good but anyway don't try it on production machines :). >>>> >>>> After the installation we have to do a few things: >>>> - Add crontab group >>>> - Change group to crontab on /var/cron/tabs >>>> - Add sticky bit on /var/cron/tabs >>>> - Add group write permissions on /var/cron/tabs >>>> >>>> This is still work in progress but if someone could have a look on >>>> this and >>>> give me some feedback it would be great. >>>> >>>> Regards, >>>> Tomasz Walaszek >> >> you should up the version number or start your own renamed application > Tomek, please don't let messages like this dissuade you from > participating. Please do continue this work, it seems very promising. > Thank you! > > I was myself looking forward to having these additions. Very cool. Hi Tomek, One of the things I like in some of the other cron's is the possibility to add files to something like: /var/cron.d. This as contract to /var/cron/tabs, where files need to and are executed under that users privilidges. Reason that this would be convenient is that tools like puppet don't need to start editing files to remove crontab lines. Which IMHO is always more hairy then just adding/deleting/updating a file called: /var/cron.d/tool-ABC.cron I looked around but that is not in Vixie cron, and could be frowned upon because of too much possible security pittfalls. regards, --WjW