On Fri, Mar 07, 2014 at 02:51:41PM +0100, Matthias Urlichs wrote:
I did a „setcap cap_sys_ptrace+eip /usr/lib/nagios/plugins/check_procs”, but a normal user can’t still check for running programs of another user. What did I wrong?check_procs is a script, not a "real" executable.
Wrong. [stse@osgiliath]: file /usr/lib/nagios/plugins/check_procs /usr/lib/nagios/plugins/check_procs: ELF 64-bit LSB shared object…If I do a „chmod u+s check_procs” it works. But I think capabilities are a safer solution than s-bit.
Shade and sweet water!
Stephan
--
| Stephan Seitz E-Mail: s...@fsing.rootsland.net |
| Public Keys: http://fsing.rootsland.net/~stse/keys.html |
signature.asc
Description: Digital signature
