[syslog-ng]destination X { program(); }; and security
Gregor Binder
gb@rootnexus.net
Wed, 6 Jun 2001 17:32:58 +0200
David Douthitt on Wed, Jun 06, 2001 at 10:25:52AM -0500:
David,
> > Is using a program destination like "sed -e 's#<XX>#<YY>#' | your_prog"
> > an option?
>
> You can do that? I see that the program() destination is an execl()
> call - I didn't think a pipe would work there.
hmm .. I guess you're right .. so you'd have to use a wrapper script to
do that for you.
> Also, I noticed that items run via program() run as root - at least
> when syslog-ng is run as root. Is it possible to have syslog-ng drop
> priveledges? In fact, is it possible to have syslog-ng drop its own
> priveledges as soon as possible and run as a normal user? Perhaps as
> nobody?
For program destinations, you could use "su -c your_program".
Regards,
--
____ ____
/ _/| - > Gregor Binder <gb@(rootnexus.net|sysfive.com)>
| / || _\ \
\__ Id: 0xE2F31C4B Fp: 8B8A 5CE3 B79B FBF1 5518 8871 0EFB AFA3 E2F3 1C4B