We are running BMC Patrol as well and we certainly dont do that
from the root account.
$ id
uid=107(patrol) gid=1(other)
$ ls -l
-rwxr-xr-x 1 patrol other 1463 Mar 23 21:01 Patrol
-rwxr-xr-x 1 patrol other 985 Mar 23 21:01 PatrolAgent
drwxr-xr-x 6 patrol other 512 Mar 23 20:52 Solaris27-sun4
Infact - we have been told by our vendor that we should never run
this product as root.
Its up and running just fine over here so I see no reason why you
would have to run it setuid.
We have this up and running under Solaris (2.5/2.6/2.7) and HP-UX
Sincerely,
Jasper Jans
On Thu, 30 Mar 2000, Ng, Kenneth (US) wrote:
> My apologies for sending an off topic question, but I don't know of any
> other mailing list that would be better suited to this topic (if you know of
> one, please let me know). We have a product here, BMC Patrol (kind of a
> system and process monitor), which the vendor insists can only run as root
> and that there is no security problem, and never has had a security problem
> if properly configured, and will not support this product if not run as root
> (yeah I know it starts as id "patrol", but the executable is suid root).
> Have there been security problems with this package in the past?
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
