maintainer-feedback requested: [Bug 228519] sysutils/beats should probably run a specific `beats' user

bugzilla-noreply at freebsd.org bugzilla-noreply at freebsd.org
Sat May 26 20:34:21 UTC 2018


Bugzilla Automation <bugzilla at FreeBSD.org> has asked freebsd-elastic mailing
list <elastic at FreeBSD.org> for maintainer-feedback:
Bug 228519: sysutils/beats should probably run a specific `beats' user
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=228519



--- Description ---
the *beats daemons should probably not run as root

Running as nobody is not correct since the daemons own files in
/var/db/beats/*beat. Hence the correct way is probably to create a `beats' user
and ditto group. That way, admins can allow the beats group read access to log
files that are not world readable, for example. 

Thoughs on this?

Palle


More information about the freebsd-elastic mailing list