Apparently the current Docker setup has a bug where NIS groups cannot be used in it's config, e.g. it'll create
where we need 'docket' to be something else (a NIS group). (Btw, I know there are other solutions to our issue - this bug report is about CFengine and perms body)
Anyway, after implementing e.g.
the socket did not change group; in the log output was:
Possibly because mog(), og() etc appears to use chown in it's <user>:<group> syntax I then tried this:
but that gave the exact same result (and same 'chown' message).
The commands /bin/chown and /bin/chgrp work just fine on the command line, so it appears CFengine has a bug here.