Title: Request for classic confinement: shresth-server-analyzer
-
name:
shresth-server-analyzer -
description:
The Shresth Server Analyzer is a powerful and user-friendly Bash script designed to provide comprehensive insights into the performance and status of a Linux server. This tool is ideal for system administrators, DevOps engineers, and anyone who needs to monitor server health and troubleshoot issues efficiently. -
snapcraft: Snapcraft YAML
-
upstream: GitHub Repository
-
upstream-relation: I am the developer and maintainer of this project.
-
supported-category:
development tools(since it aids in system analysis and debugging)command-line tools(as it provides essential system monitoring features)
-
reasoning:
shresth-server-analyzerrequires classic confinement due to the following technical reasons:- It needs access to system logs, including
/var/log/auth.log, to analyze failed login attempts, which is crucial for security monitoring. - It reads from
/proc/(e.g.,/proc/cpuinfo,/proc/meminfo,/proc/loadavg) to monitor CPU usage, memory usage, system load, and running processes. - It retrieves OS details from
/etc/os-releaseto display distribution and version information. - The snap also interacts with system utilities like
ps,top, anddf, which rely on full system access.
Strict confinement is not feasible because the existing Snap interfaces do not provide sufficient access to these system files and logs. The snap needs unrestricted access to system metrics, making classic confinement necessary.
- It needs access to system logs, including
-
I understand that strict confinement is generally preferred over classic.
- I’ve tried the existing interfaces to make the snap work under strict confinement, but they do not allow access to the required system logs and process monitoring utilities.