[collectd] The Exec plugin and enforcing non-root execution

Jan Kundrát jkt at flaska.net
Thu Mar 6 20:54:59 CET 2014


On Thursday, 6 March 2014 19:49:21 CEST, Jan Kundrát wrote:
> I would like to respectfully ask you to reconsider this design 
> choice. Please consider my use case, as well as the plugins on 
> the net (and even collectd.git's own contrib/exec-smartctl). Do 
> we *really* get any benefit by this forced dropping of root, 
> only to gain it again through a SUID wrapper? I just fail to see 
> any benefits here.

An interesting observation is that the group ID is not checked, and 
therefore nothing prevents the launched program to run with GID 0. That is, 
fortunately, enough in the case of /dev/ipmi0 on a RHEL6.

With kind regards,
Jan

-- 
Trojitá, a fast Qt IMAP e-mail client -- http://trojita.flaska.net/



More information about the collectd mailing list