Redhat init script best practice

linux redhat rhel5 init.d lsb
7,931

Solution 1

You can just su. You won't need the password because the script will initally be running as root.

There's also the runuser command.

If you use /etc/init.d/functions you can use the daemon function which has an option for specifying the user to run as.

I'd personally sway towards the latter all other things being equal.

Solution 2

If you write a redhat-style init script, the daemon function has a --user option.

daemon --user=$runasuser --pidfile="$PIDFILE" $yourbinary $youroptions
Share:
7,931

Related videos on Youtube

Garry Harthill
Author by

Garry Harthill

Someday I'll get round to filling this in :)

Updated on September 17, 2022

Comments

  • Garry Harthill
    Garry Harthill over 1 year

    I want to write an init service script which runs the program as a particular user (and not root). I will then chkconfig this script and install into my production run level.

    I could just put a su command in the script but I was wondering if there is a best practise of doing this.

    Thanks, Garry

  • codebyren
    codebyren almost 15 years
    If using sudo, you'd want to add the -u <run as user> and consider using the NOPASSWD option for that user/command combination.
  • Garry Harthill
    Garry Harthill almost 15 years
    Well it's currently been run as root so su doesn't require any password (editing of /etc/sudoers will allow sudo to run with a password as well). But is this the preferred method? We have some in-house developed software which I want to write service scripts for. I don't want this software to be run as root though (for obvious reasons).
  • Govindarajulu
    Govindarajulu almost 15 years
    I strongly advise against using sudo in init scripts. sudo is meant for users to do stuff without knowing the root password. Since an init script is run as root anyway, there is no need to use sudo. Sudo will only needlessly complicate things.
  • Govindarajulu
    Govindarajulu almost 15 years
    This a the prefered solution: stay as close as possible to the way the OS provided initscripts work. Use /etc/init.d/functions. It'll even provide you with green OK and red FAIL messages when starting the initscript.
  • spuder
    spuder over 9 years
    Using sudo in an init script will fail if requiretty is enabled in /etc/sudoers (on by default in cent 6 and cent 7)github.com/influxdb/influxdb/issues/800
  • Felipe Alvarez
    Felipe Alvarez about 8 years
    You think echo-ing the password is best practice?

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

How to make a clone of a HD using RHEL 5.4?
RHEL server Yum dependencies not working
How do I remove Xen kernel and put normal kernel on RHEL 5
Can not register with RHEL
bnx2 and e1000e drivers on RHEL 5.3 detects repeated link loss
Starting Tomcat 7 as a user - init.d script can't write pid
How to Update Red Hat Enterprise Linux 5.4 using CentOS Repos
CentOS 5 - realtime patch
"reboot" or "shutdown -r now": what restart command is safer?
What version of RHEL am I using?