X-Original-To: alpine-devel@lists.alpinelinux.org Delivered-To: alpine-devel@lists.alpinelinux.org Received: from mail.wtbts.no (mail.wtbts.no [213.234.126.131]) by lists.alpinelinux.org (Postfix) with ESMTP id 172941EBFF9 for ; Tue, 7 Dec 2010 16:02:48 +0000 (UTC) Received: from [10.65.65.1] (unknown [10.65.65.1]) by mail.wtbts.no (Postfix) with ESMTP id 9969012C001 for ; Tue, 7 Dec 2010 16:55:00 +0100 (CET) Subject: Re: [alpine-devel] system groups From: Natanael Copa To: alpine-devel@lists.alpinelinux.org In-Reply-To: <20101207151943.60bfb747@alpinelinux.org> References: <20101207151943.60bfb747@alpinelinux.org> Content-Type: text/plain; charset="UTF-8" Date: Tue, 07 Dec 2010 17:02:46 +0100 Message-ID: <1291737766.7439.8.camel@ncopa-desktop.nor.wtbts.net> X-Mailinglist: alpine-devel Precedence: list List-Id: Alpine Development List-Unsubscribe: List-Post: List-Help: List-Subscribe: Mime-Version: 1.0 X-Mailer: Evolution 2.32.1 Content-Transfer-Encoding: 7bit On Tue, 2010-12-07 at 15:19 +0000, Natanael Copa wrote: > Hi, > > We have introduced a special system group with gid 700. All users in > this group will have permission to see all processes, network info and > kernel symbols. The purpose of this is to have monitorig software like > zabbix and nagios agents running as users that are in this group. > > I will update alpine-baselayout (which has not been touched for years) > with a new group, called 'readproc', which will be used for gid 700. I should have picked a lower gid. Seems like 30 is free. Everybody ok with me updating the kernel to use GID=30 and update alpine-baselayout's /etc/group to hold 'readproc:x:30:'? Thanks! -nc --- Unsubscribe: alpine-devel+unsubscribe@lists.alpinelinux.org Help: alpine-devel+help@lists.alpinelinux.org ---