The modes are as designed - see the comments in the rrd plugin configuration.
If you EVER run ntop with -u root (say you are testing), then rrds from that run will be root:root - and will not be changed for later runs. Once the file is created by root, ntop:users will not be able to update it. You are right that starting the plugins as root seems odd. I'll have to look at that carefully as it's an invasive change. The change from root to -u is in checkUserIdentity() called from main.c around 580?... I think the only stuff that has to be root is when we open the pcap interface (so we can set promiscuous mode) and MAYBE init_ssl()/initWeb() (Since some systems still? do not allow non-root to open low #ed ports, if you wanted ntop on 80 it would need to be root at that point). The problem is there is a bunch 'o stuff in initNtop() that needs to be split into root and non-root parts. Guess I'll have to work on the change and make an RC2... Gack. -----Burton -----Original Message----- From: Aaron Grewell [mailto:[EMAIL PROTECTED] Sent: Thursday, September 22, 2005 12:14 PM To: [email protected] Cc: Burton Strauss Subject: Re: [Ntop] Buffer too short error and inbound traffic recording On Thursday 22 September 2005 00:11, Burton Strauss wrote: > Hard to say what happens w/ that buffer too short - it could cause > some really odd results. Fix: I'm still deciphering this bit of C, it's not my best talent. Meanwhile: > But I don't think it's related to tx/rx - that's more likely (esp. > with the error messages) due to missing files, such as running out of disk space. There's over 5GB free on the volume, so it's not a space issue. What I do think is odd is that the files are all owned by root.root and mode is 700 for the rrd directory and its subdirs and 600 for the rrd files. From the startup logs it looks as though the rrd thread might be called before the privelege drop, so I suppose that might be by design, but it still seems unusual. Thanks for the assist, I'll continue looking at the code to see if I can't make util.c happy. -Aaron _______________________________________________ Ntop mailing list [email protected] http://listgateway.unipi.it/mailman/listinfo/ntop
