I don’t want to run Jenkins as root, nor giving public access (or even group access) to /etc/shadow seems to a good idea.
as suggested by “Manage Jenkins” when selecting Linux user/group database:
“Either Jenkins needs to run as root or User ‘httpd’ needs to belong to group root and ‘chmod g+r /etc/shadow’ needs to be done to enable Jenkins to read /etc/shadow”
From a security stand point what would be the best practice while running Jenkins and still being able to perform some tasks as a super user (in case my jobs need that)
This work is licensed under a Creative Commons Attribution-ShareAlike 3.0 Unported License.