severity 734851 wishlist quit On Fri, Jan 10, 2014 at 06:26:38PM +0800, Wang Jian wrote: > When using daemontools-run, only root can manipulate /etc/service. > That sets strong limitation. > > For security reason, in a server farm for internet services, > application processes that do real work are normally run under > non-priviledged account instead of root, and separated from internet > by frontend servers (load balancers). > > In the said scenario, daemontools should run under non-priviledged > accounts. This eases operations. > > Here is my solution > > https://github.com/lark/daemontools-userrun > > Note that it still supports /etc/service for root (when configured). > The only problem is without init's help (/etc/inittab), svscan may be > killed and no respawn happens. IMHO, it's not a big problem if oom > killer doesn't kill it. > > Please consider incorporate this 'daemontools-userrun' functionality > into daemontools packages. The said git repository is in-house > operation work so no explicit license is attached, while the code is > based upon svscanboot.
Hi, thanks for the suggestion. Unfortunately I have only limited time available to work on these Debian packages, so for now I set this report to severity wishlist and keep it in the packages' bug list. Regards, Gerrit. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
