(file) Return to notes.txt CVS log (file) (dir) Up to [Pegasus] / pegasus / src / Executor
File: [Pegasus] / pegasus / src / Executor / notes.txt (download)
Revision: 1.1.2.3, Thu Dec 28 17:56:33 2006 UTC (17 years, 5 months ago) by mike
Branch: PEP286_PRIVILEGE_SEPARATION_BRANCH
Changes since 1.1.2.2: +18 -13 lines 
PEP#: 286
TITLE: Privilege Separation

DESCRIPTION: Ongoing privilege separation work.


    1.  Cimservermain must be owned by ordinary user. For example:

        % chown pegasus.pegasus cimservermain

        Cimservermain runs as this user.

    2.  Cimservermain must be able to create files directly under $PEGASUS_HOME.

        For example, it must create the cimserver.password file.

        We solved this by having the executor access those files.

    3.  Cimservermain must own $PEGASUS_HOME/repository and all files beneath.

        For now, the executor automatically sets ownership for these files.

    4.  For OOP run with same user as server, what user is that? The
        cimservermain user or root? The intent was probably to run those
        providers with privilege.

        For now, we use the same user as the executor.

    5.  Executor now checks whether Pegasus repository exists and errors out
        if not. Is this okay?

    6.  The configuration file has a repositoryDir key. What is that for and
        does it mean that the executor cannot reliably locate the repository
        with the constant in Constants.h?

    7.  Cimservermain owns the local-domain socket file.

    8.  For logging purposes, the executor uses "cimexecutor" as its syslog
        identifier.
No CVS admin address has been configured
 Powered by
ViewCVS 0.9.2