Re: [alpine-devel] system groups
On 12/07/10 08:18, Timo Teräs wrote:
> On 12/07/2010 06:02 PM, Natanael Copa wrote:
>> On Tue, 2010-12-07 at 15:19 +0000, Natanael Copa wrote:
>>> We have introduced a special system group with gid 700. All users in
>>> this group will have permission to see all processes, network info and
>>> kernel symbols. The purpose of this is to have monitorig software like
>>> zabbix and nagios agents running as users that are in this group.
>>> I will update alpine-baselayout (which has not been touched for years)
>>> with a new group, called 'readproc', which will be used for gid 700.
>> I should have picked a lower gid. Seems like 30 is free. Everybody ok
>> with me updating the kernel to use GID=30 and update
>> alpine-baselayout's /etc/group to hold 'readproc:x:30:'?
> Yes, that sounds better. Usually gid 100-1000 can be assigned by
> "addgroup --system". We would not want this GID to get autoassigned on
> systems where the entry does not exist.
> GID=30 sounds ok.
Received on Tue Dec 07 2010 - 08:25:32 UTC