Andrei POPESCU <[email protected]> writes: >> I believe this can be achieved by adding this section to >> /etc/munin/plugin-conf.d/munin-node: >> >> [processes] >> user root >> >> Not sure if this is actually a good solution.
When you mount /proc with hidepid={1,2}, you should also add a
gid=<somegroup> which will be able to read proc without being root.
This takes, as far as I can see, only one group name, so if multiple
system users should be able to read proc, they should be added to this
group.
When mounting /proc with hidepid is more common, or default, Debian will
most likely add a "standard" group one can use for this purpose. Then we
can add:
/etc/munin/plugin-conf.d/processes.conf
[processes]
group I_wanna_read_proc
…without having to run the plugin with root privileges everywhere. Until
then, it is a local configuration issue.
--
Stig Sandbeck Mathisen
signature.asc
Description: PGP signature
