[Bro] [Not] Running Bro as root?
Charles A. Fair
charles.fair at mac.com
Wed Jun 13 10:23:40 PDT 2018
Drew,
Check out the ROCK NSM project:
http://rocknsm.io <http://rocknsm.io/>
https://github.com/rocknsm/rock <https://github.com/rocknsm/rock>
https://rocknsm.gitbooks.io/rocknsm-guide/content/overview/ <https://rocknsm.gitbooks.io/rocknsm-guide/content/overview/>
ROCK runs Bro without root privileges on RHEL/CentOS 7.3 with SELinux in enforcing mode (setenforce1). ROCK is built using Ansible.
Chuck
> On Jun 13, 2018, at 11:07 AM, Drew Dixon <dwdixon at umich.edu> wrote:
>
> Hello,
>
> So from what I understand it is not at all a trivial task to get bro to properly run/function under a user account other than root (Linux [RHEL/CentOS]).
>
> Just mostly out of curiosity, I was wondering if anyone had taken on this task and are successfully running bro in production under a non-root user account? Further, has anyone perhaps automated/scripted some/all of the changes required in order to move bro to run as a non-root user account without issue?
>
> Thank you,
>
> -Drew
> _______________________________________________
> Bro mailing list
> bro at bro-ids.org
> http://mailman.ICSI.Berkeley.EDU/mailman/listinfo/bro
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ICSI.Berkeley.EDU/pipermail/bro/attachments/20180613/2c351484/attachment.html
More information about the Bro
mailing list