From owner-freebsd-hackers@FreeBSD.ORG Mon Jun 23 13:26:12 2014 Return-Path: Delivered-To: freebsd-hackers@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 38700F6; Mon, 23 Jun 2014 13:26:12 +0000 (UTC) Received: from mail-oa0-x231.google.com (mail-oa0-x231.google.com [IPv6:2607:f8b0:4003:c02::231]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id E647927A7; Mon, 23 Jun 2014 13:26:11 +0000 (UTC) Received: by mail-oa0-f49.google.com with SMTP id i7so10086509oag.22 for ; Mon, 23 Jun 2014 06:26:11 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=XIzUb2QckVLzmaOEXSjfpjkzHozgbCoj4jkM4NJXICw=; b=e1N5Vg1nSd8LsvugOifdKuy96bwDgdqo4EFX1b5fcMSpf7ofUuuxNLS27NyON3U8dM e1ZvNKOJuvxc7HVZdYbEkxywbfnye3AbaRwDQd/EGPt7HBsHlf0duoP8Rr9eOMeVk5JQ aj5m4/mipZA6Y+EkX0cwfWazmoQm2vGXZA9s1EWPnPeEHN6+wtWOScbZb33MPzT+8kEF e/QgxAS2jUD0MYJG9X51gSfq/w9FpvIKC+agnDEBBCTF4gVRXHmhQARLh1HeZG95xWBB M2STcTEJ8ZT0OMbSVjSx1rNPUi97TQrrkho3/dnuhBcCfP9v0udgaWe69qEkYWPw7LgN Y0NA== MIME-Version: 1.0 X-Received: by 10.60.176.163 with SMTP id cj3mr3288152oec.34.1403529971176; Mon, 23 Jun 2014 06:26:11 -0700 (PDT) Received: by 10.76.154.8 with HTTP; Mon, 23 Jun 2014 06:26:11 -0700 (PDT) In-Reply-To: <53A82008.9050002@digiware.nl> References: <53A72666.8090101@cox.net> <53A78C13.8030909@freebsd.org> <53A82008.9050002@digiware.nl> Date: Mon, 23 Jun 2014 15:26:11 +0200 Message-ID: Subject: Re: Improve cron(8) From: =?UTF-8?Q?Tomek_Wa=C5=82aszek?= To: Willem Jan Withagen Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.18 Cc: freebsd-hackers@freebsd.org, Alfred Perlstein X-BeenThere: freebsd-hackers@freebsd.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: Technical Discussions relating to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 23 Jun 2014 13:26:12 -0000 2014-06-23 14:39 GMT+02:00 Willem Jan Withagen : > On 2014-06-23 4:08, Alfred Perlstein wrote: > >> On 6/22/14 11:54 AM, John D. Hendrickson and Sara Darnell wrote: >> >>> Eitan Adler wrote: >>> >>>> +arch since hackers@ seems to be silent. >>>> >>>> On 11 June 2014 23:56, Tomek Wa=C5=82aszek wrot= e: >>>> >>>>> Hello, >>>>> I saw on the FreeBSD Ideas page topic about cron :). >>>>> I've started updating the 'original' FreeBSD cron from sources to >>>>> vixi cron >>>>> 4.1. I think (well I hope :P) most of the features that were done in >>>>> FreeBSD cron are now ported into vixi cron 4.1, there are unfortunate= ly >>>>> some missing features at the moment: >>>>> - @every_second - this need to be done >>>>> - -s and -o, in vixi cron 4.1 daylight time switches are enabled by >>>>> default, at the moment there is no -s and -o options. So you need to >>>>> remove >>>>> '-s' from the cron rc script >>>>> >>>>> I've also added one feature from OpenBSD, crontab is poking cron usin= g >>>>> unix-domain socket so we don't need to have suid on crontab. >>>>> >>>>> Path is in the attachment. I'm testing it on my FreeBSD box and it >>>>> looks >>>>> good but anyway don't try it on production machines :). >>>>> >>>>> After the installation we have to do a few things: >>>>> - Add crontab group >>>>> - Change group to crontab on /var/cron/tabs >>>>> - Add sticky bit on /var/cron/tabs >>>>> - Add group write permissions on /var/cron/tabs >>>>> >>>>> This is still work in progress but if someone could have a look on >>>>> this and >>>>> give me some feedback it would be great. >>>>> >>>>> Regards, >>>>> Tomasz Walaszek >>>>> >>>> > > >>> you should up the version number or start your own renamed application >>> >> > Tomek, please don't let messages like this dissuade you from >> participating. Please do continue this work, it seems very promising. >> Thank you! >> >> I was myself looking forward to having these additions. Very cool. >> > > Hi Tomek, > > One of the things I like in some of the other cron's is the possibility t= o > add files to something like: /var/cron.d. > This as contract to /var/cron/tabs, where files need to and ar= e > executed under that users privilidges. > > Reason that this would be convenient is that tools like puppet don't need > to start editing files to remove crontab lines. Which IMHO is always more > hairy then just adding/deleting/updating a file called: > /var/cron.d/tool-ABC.cron > > I looked around but that is not in Vixie cron, and could be frowned upon > because of too much possible security pittfalls. > > regards, > --WjW > > > > > > _______________________________________________ > freebsd-hackers@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-hackers > To unsubscribe, send any mail to "freebsd-hackers-unsubscribe@freebsd.org= " > Hello, I got your point. >From the technical perspective it should be quite easy to implement this feature, but I'm not sure whether this will get positive feedback. I remeber that there was a discussion on the OpenBSD mailing lists (there was even a patch for this) but they don't like the idea :) maybe FreeBSD project will like it, I don't know. At the moment I want to update FreeBSD cron to ISC cron (with all the features that FreeBSD has at the moment and ISC does not have) and integrate atrun into cron like it was done in OpenBSD cron. After that (or faster who knows :)) maybe we should have a discussion about this idea. Best regards, Tomasz Walaszek