On Thu, Mar 06, 2014 at 04:32:34PM +0100, Guido Günther wrote:
Luckily this is not the case. :) root can see other users' /proc entries just fine. Perhaps the documentation should be improved.I should have checked the code first. If I read that correctly CAP_SYS_PTRACE is necessary here. I've forwarded a patch upstream.
I did a „setcap cap_sys_ptrace+eip /usr/lib/nagios/plugins/check_procs”, but a normal user can’t still check for running programs of another user.
What did I wrong? Shade and sweet water! Stephan -- | Stephan Seitz E-Mail: stse@fsing.rootsland.net | | Public Keys: http://fsing.rootsland.net/~stse/keys.html |
Attachment:
smime.p7s
Description: S/MIME cryptographic signature