Looks like it isn't built with support of dropping root privileges? chronyd[12844]: Fatal error : dropping root privileges not supported
On Thu, Sep 27, 2012 at 5:40 PM, Jasmine Hassan <jasmine.a...@gmail.com> wrote: > Package: chrony > Version: 1.24-3.1 > > Hi, > > Chrony's daemon, chronyd, has supported dropping root privileges on > Linux since version 1.24 (released 4 February 2010). > > However, until today, default install runs chronyd as root, which is > completely unnecessary, and dangerous. > > $ ps -C chronyd -o user= > root > > Unfortunately, there's no option to set a user for chronyd to run as > from its config /etc/chrony/chrony.conf, and the package doesn't use > /etc/default directory. > Therefore, one would have to alter its init script, > /etc/init.d/chrony, to add the "-u user" option. But this has the > downside of having the file overwritten on upgrades. > > I wouldn't mind chrony using "ntp" user by default, since installing > it would replace ntp anyway, which also runs as user ntp (see > /etc/init.d/ntp). > > Best, > Jasmine -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
