Code:
[tsadmin@xxx ~]$ ps -ef | grep rlm
root 10090 10088 0 Sep24 ? 00:00:00 /bin/bash /etc/redhat-lsb/lsb_start_daemon -u license ./rlm -c tecplotlm.lic -dlog debug.log
root 10096 10090 0 Sep24 ? 00:00:00 runuser -s /bin/bash license -c ulimit -S -c 0 >/dev/null 2>&1 ; ./rlm -c tecplotlm.lic -dlog debug.log
license 10097 10096 0 Sep24 ? 00:00:00 bash -c ulimit -S -c 0 >/dev/null 2>&1 ; ./rlm -c tecplotlm.lic -dlog debug.log
license 10098 10097 0 Sep24 ? 00:00:00 ./rlm -c tecplotlm.lic -dlog debug.log
So 88 begat 90 (root), and 90 begat 96 (root), and 96 begat 97 (license), and 97 begat 98 (license). 98 is the actual daemon running as the license user. I just wanted some reassurance that we achieved the security we were working for. I was hesitant to believe that many processes are required for init to run one daemon as non-root. I am running 6+ different license daemons.
Thanks