On Wed, Jan 16, 2013 at 06:16:55PM +0100, Lennart Poettering wrote:
> On Fri, 11.01.13 21:23, Zbigniew Jędrzejewski-Szmek ([email protected]) wrote:
>
> >
> > On Fri, Jan 11, 2013 at 09:03:52PM +0100, Lennart Poettering wrote:
> > > On Wed, 09.01.13 22:52, Zbigniew Jędrzejewski-Szmek (zbys...@in.
On Fri, 11.01.13 21:23, Zbigniew Jędrzejewski-Szmek ([email protected]) wrote:
>
> On Fri, Jan 11, 2013 at 09:03:52PM +0100, Lennart Poettering wrote:
> > On Wed, 09.01.13 22:52, Zbigniew Jędrzejewski-Szmek ([email protected])
> > wrote:
> >
> > > > > We'd define a new special field OBJECT_PID.
On Sat, Jan 12, 2013 at 6:23 AM, Zbigniew Jędrzejewski-Szmek
wrote:
> I don't think that this is safe. We want to prevent spoofing of
> messages by unpriviledged processes.
Agreed. User sessions are the uncommon case in server environments.
--
David Strauss
| [email protected]
| +1 51
On Fri, Jan 11, 2013 at 09:03:52PM +0100, Lennart Poettering wrote:
> On Wed, 09.01.13 22:52, Zbigniew Jędrzejewski-Szmek ([email protected]) wrote:
>
> > > > We'd define a new special field OBJECT_PID. If this is included in a
> > > > message, and that message comes from a privileged service, th
On Wed, 09.01.13 22:52, Zbigniew Jędrzejewski-Szmek ([email protected]) wrote:
> > > We'd define a new special field OBJECT_PID. If this is included in a
> > > message, and that message comes from a privileged service, then journald
> > > will automatically add in OBJECT_EXE, OBJECT_UID, OBJECT_
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 01/09/2013 04:52 PM, Zbigniew Jędrzejewski-Szmek wrote:
> On Wed, Jan 09, 2013 at 02:58:12PM -0500, Daniel J Walsh wrote:
>> -BEGIN PGP SIGNED MESSAGE- Hash: SHA1
>>
>> On 01/09/2013 02:49 PM, Lennart Poettering wrote:
>>> On Wed, 09.01.13
On Wed, Jan 09, 2013 at 02:58:12PM -0500, Daniel J Walsh wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> On 01/09/2013 02:49 PM, Lennart Poettering wrote:
> > On Wed, 09.01.13 17:44, Zbigniew Jędrzejewski-Szmek ([email protected])
> > wrote:
> >
> >>> systemctl httpd status SELi
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 01/09/2013 02:49 PM, Lennart Poettering wrote:
> On Wed, 09.01.13 17:44, Zbigniew Jędrzejewski-Szmek ([email protected])
> wrote:
>
>>> systemctl httpd status SELinux is blocking httpd read access on
>>> /var/www/index.html setroubleshoot ...
On Wed, 09.01.13 17:44, Zbigniew Jędrzejewski-Szmek ([email protected]) wrote:
> > systemctl httpd status
> >
> > SELinux is blocking httpd read access on /var/www/index.html
> > setroubleshoot
> > ...
> > run restorecon /var/www/index.html
> >
> > The only way for systemd to know the setrou
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 01/09/2013 01:42 PM, Zbigniew Jędrzejewski-Szmek wrote:
> On Wed, Jan 09, 2013 at 12:31:05PM -0500, Daniel J Walsh wrote:
>> -BEGIN PGP SIGNED MESSAGE- Hash: SHA1
>>
>> On 01/09/2013 11:55 AM, Zbigniew Jędrzejewski-Szmek wrote:
>>> On Wed,
On Wed, Jan 09, 2013 at 12:31:05PM -0500, Daniel J Walsh wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> On 01/09/2013 11:55 AM, Zbigniew Jędrzejewski-Szmek wrote:
> > On Wed, Jan 09, 2013 at 05:44:02PM +0100, Zbigniew Jędrzejewski-Szmek
> > wrote:
> >> On Wed, Jan 09, 2013 at 11:00:3
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 01/09/2013 11:55 AM, Zbigniew Jędrzejewski-Szmek wrote:
> On Wed, Jan 09, 2013 at 05:44:02PM +0100, Zbigniew Jędrzejewski-Szmek
> wrote:
>> On Wed, Jan 09, 2013 at 11:00:36AM -0500, Daniel J Walsh wrote:
>>> -BEGIN PGP SIGNED MESSAGE- Hash:
On Wed, Jan 09, 2013 at 05:44:02PM +0100, Zbigniew Jędrzejewski-Szmek wrote:
> On Wed, Jan 09, 2013 at 11:00:36AM -0500, Daniel J Walsh wrote:
> > -BEGIN PGP SIGNED MESSAGE-
> > Hash: SHA1
> >
> > One of my goals with setroubleshoot analysys is to get it integrated into
> > the
> > journa
On Wed, Jan 09, 2013 at 11:00:36AM -0500, Daniel J Walsh wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> One of my goals with setroubleshoot analysys is to get it integrated into the
> journald system.
>
> In Fedora I am adding
>
> systemd.journal.send(siginfo.format_text())
>
> Wh
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
One of my goals with setroubleshoot analysys is to get it integrated into the
journald system.
In Fedora I am adding
systemd.journal.send(siginfo.format_text())
Which will put the setroubleshoot info into the journal, but what I really
need is to ad
15 matches
Mail list logo
