FAQ Search Today's Posts Mark Forums Read
» Video Reviews

» Linux Archive

Linux-archive is a website aiming to archive linux email lists and to make them easily accessible for linux users/developers.


» Sponsor

» Partners

» Sponsor

Go Back   Linux Archive > Gentoo > Gentoo Hardened

 
 
LinkBack Thread Tools
 
Old 09-30-2012, 01:21 PM
Alex Efros
 
Default conky and /proc/net restrictions

Hi!

Is it possible to work around /proc/net restrictions to let conky access
network traffic stats without running `sudo conky` or disabling
CONFIG_GRKERNSEC_PROC_USER? Maybe using `setfacl` or something like that
to mark /usr/bin/conky allowed to access /proc/net?

--
WBR, Alex.
 
Old 09-30-2012, 02:19 PM
Sven Vermeulen
 
Default conky and /proc/net restrictions

On Sep 30, 2012 3:25 PM, "Alex Efros" <powerman@powerman.name> wrote:

> Is it possible to work around /proc/net restrictions to let conky access

> network traffic stats without running `sudo conky` or disabling

> CONFIG_GRKERNSEC_PROC_USER? Maybe using `setfacl` or something like that

> to mark /usr/bin/conky allowed to access /proc/net?


Iirc there is a kernel setting that defines which group (gid) is exempt from this control. Perhaps you can use that and make the conky user part of that group?


Wkr,

* Sven Vermeulen
 

Thread Tools




All times are GMT. The time now is 10:51 AM.

VBulletin, Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO ©2007, Crawlability, Inc.
Copyright 2007 - 2008, www.linux-archive.org