Hi Ken, It is, the tcsd.conf has security sensitive information that affects trousers, for example the integrity log source and pcrs. Therefore we don't want it to be accessible by random users. Athough the TCSD should be launched as root, it drops its privileges after, for example, reading tcsd.conf, setting its UID to tss', an user with much lower system access.
Thanks, Rajiv Andrade Security Development IBM Linux Technology Center On 03/02/2011 03:22 PM, Kenneth Goldman wrote: > I wonder if this is 'working as designed'. I'm trying to run tcsd as > a normal user. As a general rule, I try to be root as little as > possible. > > The first try reported: > TCSD ERROR: fopen(/etc/tcsd.conf): Permission denied > > Sure enough, the protection was 600. When I changed it to 644, I got: > TCSD ERROR: TCSD config file (/etc/tcsd.conf) must be mode 0600 > > It looks like Trousers wants to force me to run as root. Is there a > rationale for this, or is it a bug? > > -- > Ken Goldman [email protected] > 914-784-7646 (863-7646) > > > ------------------------------------------------------------------------------ > Free Software Download: Index, Search& Analyze Logs and other IT data in > Real-Time with Splunk. Collect, index and harness all the fast moving IT data > generated by your applications, servers and devices whether physical, virtual > or in the cloud. Deliver compliance at lower cost and gain new business > insights. http://p.sf.net/sfu/splunk-dev2dev > > > _______________________________________________ > TrouSerS-users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/trousers-users ------------------------------------------------------------------------------ Free Software Download: Index, Search & Analyze Logs and other IT data in Real-Time with Splunk. Collect, index and harness all the fast moving IT data generated by your applications, servers and devices whether physical, virtual or in the cloud. Deliver compliance at lower cost and gain new business insights. http://p.sf.net/sfu/splunk-dev2dev _______________________________________________ TrouSerS-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/trousers-users
