From: Daniel Teklu (dteklu@amlaw.com)
Date: Fri Apr 02 2004 - 10:43:53 EST
I am trying to setup RBAC to kill and restart a process that is
normally done by root. So, to kill the processes first,
My /etc/secirity/exec_attr entry looks like this
bouncews:suser:cmd:::/bin/pkill:euid=root,egid=bin
and I created a role called bouncews as:
#roleadd -m -P "bouncews" bouncews
and I attached the role to a user as
#usermod -R "bouncews" daniel
Now when try to kill the process of java as me, I get
# su - daniel
$ su bouncews -c /bin/pkill java
Password:
pkill: No matching criteria specified
Usage: pkill [-signal] [-fnovx] [-P ppidlist] [-g pgrplist] [-s sidlist]
[-u euidlist] [-U uidlist] [-G gidlist] [-J projidlist]
[-T taskidlist] [-t termlist] [pattern]
and then when I try to su to the role itself and do the kill:
$ su - bouncews
passwd:
$ /bin/pkill java
pkill: Failed to signal pid 17870: Not owner
pkill: Failed to signal pid 17852: Not owner
pkill: Failed to signal pid 17848: Not owner
$
what am I doing wrong? I can do "pkill java" as root and kills the
processes fine but not as the RBAC role I created.
Any ideas?
Thanks
-Daniel
_______________________________________________
sunmanagers mailing list
sunmanagers@sunmanagers.org
http://www.sunmanagers.org/mailman/listinfo/sunmanagers
This archive was generated by hypermail 2.1.7 : Wed Apr 09 2008 - 23:28:24 EDT