[prev in list] [next in list] [prev in thread] [next in thread]
List: rsbac
Subject: Re: [rsbac] auth set
From: Colin Pitrat <colin.pitrat () bull ! net>
Date: 2007-01-22 8:10:37
Message-ID: 45B4717D.9080601 () bull ! net
[Download RAW message or body]
With type PROCESS, you should send a pid. If you want to set this right
on /usr/lib/postfix/master, use FILE :
auth_set_cap -f FILE add /usr/lib/postfix/master 103
If you use PROCESS, it will only affect current process. After a reboot,
or if you restart postfix, the right will be lost.
Regards,
Colin Pitrat (Bull Services Telco)
Bull, Architect of an Open World (TM)
Tél : +33 (0) 1 30 80 72 93
www.bull.com
Jens Kasten wrote:
> hi liste,
> i have the follow logging
> /* Sun Sep 17 06:05:12 2006 :<6>0202899220|rsbac_adf_request(): request
> CHANGE_DAC_FS_OWNER, pid 16017, ppid 1,
> prog_name master, prog_file /usr/lib/postfix/master,
> uid 0, remote ip 192.168.1.5, target_type PROCESS,
> tid 16017, attr owner, value 103, result NOT_GRANTED (Softmode) by AUTH */
>
> but when i set like this,
> auth_set_cap -f PROCESS add /usr/lib/postfix/master 103
> i get this,
> Error: RSBAC_EINVALIDTARGET
>
> the rsbac_menu dont log in the menu-log the action what i do with auth, for
> this i dont have a working example.
> can someone explain me the auth_set_cap?
>
> mfg
> igraltist
> _______________________________________________
> rsbac mailing list
> rsbac@rsbac.org
> http://www.rsbac.org/mailman/listinfo/rsbac
>
["colin.pitrat.vcf" (colin.pitrat.vcf)]
begin:vcard
fn:Colin Pitrat
n:Pitrat;Colin
org:Bull;Telco
adr:;;rue Jean Jaures;Les Clayes sous Bois;;78340;France
email;internet:colin.pitrat@bull.net
tel;work:+33 1 30 80 72 93
x-mozilla-html:FALSE
url:http://www.bull.com
version:2.1
end:vcard
_______________________________________________
rsbac mailing list
rsbac@rsbac.org
http://www.rsbac.org/mailman/listinfo/rsbac
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic