NAME
mood − mooix daemon
SYNOPSIS
mood [options]
DESCRIPTION
mood is the main control daemon for the mooix moo. It is used to run moo methods.
For reasons of security, moo methods should not run as the same user as the method that executed them. Indeed, it is best that each moo method runs tightly isolated, as a special dedicated user all its own. When mood is asked to run a moo method, it sets up such a dedicated user from its pool of available user ids. Any processes that may already be running as that user id are killed. The method is then run as the user id (and with its gid set to the same number). mood waits for it to exit so the user id can be reclaimed, and in the meantime, services any other connections that come along. Running methods can also connect back to mood and ask it to preform certian operations (file opens, etc) with enhanced permissions.
mood listens for connections to its socket, which defaults to /var/run/mood.
mood does not allow just anyone to run a method. It checks the user id of whoever connects to its socket, and unless that user id is in use by another moo method, or that user id is that of a special user, or root, it refuses the connection.
OPTIONS
|
−h |
Show summary of options. |
|||
|
−n |
Don’t fork to background; run in forground. |
−s sockfile
Specify the filename to use for the socket mood listens to. The socket will be created as needed.
|
−k |
Do not kill all processes in the uid space on startup. May result in security problems. |
−L libfile
Specify the filename of a shared library that LD_PRELOAD will be set to before running modules. This is generally used to preload libmooproxy.so. Set to an empty string to preload nothing. If set, it _must_ be an absolute filename.
FILES
/etc/mooix.conf is read by mood on startup, and contains a number of important configuration items.
SEE ALSO
AUTHOR
Joey Hess <joey [AT] mooix.net>