From: steve <steve@clublinux.org>
Subject: Re: Roles question
Date: Thu, 26 Jul 2001 22:29:54 -0500
Next Article (by Date): security policy and xml "T.R.Y."
Previous Article (by Date): RE: Roles question "Kaladis"
Top of Thread: Roles question steve
Next in Thread: Re: Roles question Amon Ott
Articles sorted by: [Date]
[Author]
[Subject]
Hi, > You need to give the role qmail the ability to read approprirate files in > /lib (figure out which with ldd progname) and search rights for / as well as > other things that RSBAC is arguing about. I did that. I gave the RC ROLE 'qmail' full access rights (everything but secoff rights) to /. I thought that would allow programs running under a "forced Role" of qmail to access /. I just thought of a possible cause. qmail-qstat is just a bourne shell script. Would the "forced RC Role" apply to all of the programs called from within the bourne shell script or even the bourne shell itself? I used ldd to check, and /bin/sh requires the library that is reported in the original error message. Is there a way to get this to work, other than forcing /bin/sh to run as RC ROLE 'qmail'? One thing I forgot to mention in my last e-mail: kernel 2.4.6 rsbac 1.1.2pre8 Thanks again, Steve > > - Kaladis > > - > To unsubscribe from the rsbac list, send a mail to > majordomo@rsbac.org with > unsubscribe rsbac > as single line in the body. - To unsubscribe from the rsbac list, send a mail to majordomo@rsbac.org with unsubscribe rsbac as single line in the body.
Next Article (by Date): security policy and xml "T.R.Y."
Previous Article (by Date): RE: Roles question "Kaladis"
Top of Thread: Roles question steve
Next in Thread: Re: Roles question Amon Ott
Articles sorted by: [Date]
[Author]
[Subject]