On 04/21/2011 01:30 AM, Dominik Klein wrote:
>> Am I too paranoid?
> I don't think you are. Some non-root pratically being able to remove any
> file is certainly a valid concern.
>
> Thing is: I needed an RA that configured a cronjob. Florian suggested
> writing "the" symlink RA instead, that could manage symlink. Apparently
> there was an IRC discussion a couple weeks ago that I was not a part of.
>
> So while the symlink RA could also do what I needed, I tried to write
> that instead of the cronjob RA (which will also come since it will cover
> some more functions than this one, but that's another story).
>
> So anyway, maybe those involved in the first discussion can comment on
> this, too and share thoughts on how to solve things. Maybe they had
> already addressed these situations.
Drbdlinks was never converted to an OCF RA, that I recall. It handles
cases of needing to restart the logging system when you changed symlnks
around - mainly for chroot services. I've used it for many years. You
can find the source for it here:
http://www.tummy.com/Community/software/drbdlinks/
It's pretty well thought out, and works quite well. I'd certainly look
it over before reinventing the wheel.
--
Alan Robertson<al...@unix.sh>
"Openness is the foundation and preservative of friendship... Let me claim
from you at all times your undisguised opinions." - William Wilberforce
_______________________________________________________
Linux-HA-Dev: Linux-HA-Dev@lists.linux-ha.org
http://lists.linux-ha.org/mailman/listinfo/linux-ha-dev
Home Page: http://linux-ha.org/
