Jeremy Chadwick wrote:
You get the point now, I'm sure.
Hi, just to say a big thank you to the people on the list for keeping up
with my dumb questions on sudo, this morning I re-read the manual and
got it working within minutes.
I'm still not convinced that sudo is the way to go in our
Hi,
I'm implementing a shell script as a Nagios plugin to check the status
of the ciss(4) driver. However, there is a permission problem that I am
not sure about the best way to get around in FreeBSD (7-STABLE).
The nrpe daemon that handles the script runs as the nagios user and
the command
On Thu, Oct 16, 2008 at 09:32:02AM +0200, Per olof Ljungmark wrote:
Hi,
I'm implementing a shell script as a Nagios plugin to check the status
of the ciss(4) driver. However, there is a permission problem that I am
not sure about the best way to get around in FreeBSD (7-STABLE).
The nrpe
(Bulgaria) AD
Per olof Ljungmark [EMAIL PROTECTED]
Sent by: [EMAIL PROTECTED]
16.10.2008 10:52
To
freebsd-questions@freebsd.org
cc
Subject
FreeBSD and Nagios - permissions
Hi,
I'm implementing a shell script as a Nagios plugin to check the status
of the ciss(4) driver. However
On Thu, Oct 16, 2008 at 01:04:52AM -0700, Jeremy Chadwick wrote:
On Thu, Oct 16, 2008 at 09:32:02AM +0200, Per olof Ljungmark wrote:
The nrpe daemon that handles the script runs as the nagios user and
the command needed is camcontrol:
camcontrol inquiry da0
The nagios user does not
On Thu, Oct 16, 2008 at 09:17:58PM +1100, Edwin Groothuis wrote:
The nrpe daemon that handles the script runs as the nagios user and
the command needed is camcontrol:
First lines of the check_ciss.sh command:
#!/bin/sh
if [ $(whoami) != root ]; then
sudo $*
fi
On Thu, Oct 16, 2008 at 12:05:01PM +0100, Daniel Bye wrote:
It is possible to configure sudo to run only exactly the required command
(including arguments) precisely to guard against this type of abuse -
I use it extensively in my own nagios setup.
This Cmnd_Alias in sudoers will do the
The nrpe daemon that handles the script runs as the nagios user and
the command needed is camcontrol:
First lines of the check_ciss.sh command:
#!/bin/sh
if [ $(whoami) != root ]; then
sudo $*
fi
And allow in sudoerrs.conf the nagios user to run the check_ciss.sh
Daniel Bye wrote:
On Thu, Oct 16, 2008 at 12:05:01PM +0100, Daniel Bye wrote:
It is possible to configure sudo to run only exactly the required command
(including arguments) precisely to guard against this type of abuse -
I use it extensively in my own nagios setup.
This Cmnd_Alias in sudoers
Per olof Ljungmark wrote:
Daniel Bye wrote:
On Thu, Oct 16, 2008 at 12:05:01PM +0100, Daniel Bye wrote:
It is possible to configure sudo to run only exactly the required
command
(including arguments) precisely to guard against this type of abuse -
I use it extensively in my own nagios setup.
On Thursday 16 October 2008 22:07:43 Per olof Ljungmark wrote:
Per olof Ljungmark wrote:
Daniel Bye wrote:
On Thu, Oct 16, 2008 at 12:05:01PM +0100, Daniel Bye wrote:
It is possible to configure sudo to run only exactly the required
command
(including arguments) precisely to guard
Mel wrote:
On Thursday 16 October 2008 22:07:43 Per olof Ljungmark wrote:
Per olof Ljungmark wrote:
Daniel Bye wrote:
On Thu, Oct 16, 2008 at 12:05:01PM +0100, Daniel Bye wrote:
It is possible to configure sudo to run only exactly the required
command
(including arguments) precisely to guard
On Thursday 16 October 2008 23:36:51 Per olof Ljungmark wrote:
Mel wrote:
On Thursday 16 October 2008 22:07:43 Per olof Ljungmark wrote:
Per olof Ljungmark wrote:
Daniel Bye wrote:
On Thu, Oct 16, 2008 at 12:05:01PM +0100, Daniel Bye wrote:
snip
nagios ALL=(root) NOPASSWD:
On Thu, Oct 16, 2008 at 11:36:51PM +0200, Per olof Ljungmark wrote:
Mel wrote:
On Thursday 16 October 2008 22:07:43 Per olof Ljungmark wrote:
Per olof Ljungmark wrote:
Daniel Bye wrote:
On Thu, Oct 16, 2008 at 12:05:01PM +0100, Daniel Bye wrote:
It is possible to configure sudo to run only
Mel wrote:
On Thursday 16 October 2008 23:36:51 Per olof Ljungmark wrote:
Mel wrote:
On Thursday 16 October 2008 22:07:43 Per olof Ljungmark wrote:
Per olof Ljungmark wrote:
Daniel Bye wrote:
On Thu, Oct 16, 2008 at 12:05:01PM +0100, Daniel Bye wrote:
snip
nagios ALL=(root) NOPASSWD:
Jeremy Chadwick wrote:
On Thu, Oct 16, 2008 at 11:36:51PM +0200, Per olof Ljungmark wrote:
Mel wrote:
On Thursday 16 October 2008 22:07:43 Per olof Ljungmark wrote:
Per olof Ljungmark wrote:
Daniel Bye wrote:
On Thu, Oct 16, 2008 at 12:05:01PM +0100, Daniel Bye wrote:
It is possible to
16 matches
Mail list logo