Hi,
On 2015-11-23 08:27, Nathan Scott wrote:
> ----- Original Message -----
>
>> I'm afraid the agent options are pretty much limited to configuring the
>> allowed IPs to connect to the agent and running it as non-root (the
>> default is the "zabbix" user). Otherwise passing stuff like /etc/passwd
>> contents is probably considered a "feature".
>
> OK. For now, I've made the one-line change from local: to localhost
> context string, which means we expose less sensitive information.
ok, sounds like a good move, might even be all we need.
> If we go with the configuration file option (from the zbxpcp TODO list
> in the source), we could pass authentication information from there &
> allow an admin to enable access to that info if thats useful, not clear
> if proc.* level of detail would be of value here anyway.
>
>>> [...] - I'll start hacking on some of these things next week too.
>
> I've pushed the build/package/test side of things into my git repo - see
> previous mail.
Nice, thanks, looks very complete!
I'll check the timeout thingy later this week if you don't get there first.
> One small issue I came across - the module.h header says
> GPL (from Zabbix), whereas your module code says LGPL. This might need
> to be discussed with the Zabbix crew, AIUI the intention is to allow for
> Zabbix modules that are LGPL?
Their example code is GPL [1] but I think once we've sorted out all the
bits and pieces here (zbxpcp/pmrep) we could then inform them about the
recent developments and ask them about this as well.
1)
https://www.zabbix.com/documentation/3.0/manual/config/items/loadablemodules
Thanks,
--
Marko Myllynen
|