On 07/26/2013 05:43 AM, Thierry Carrez wrote: > I would rather support solution 3: create a single, separate executable > that does those 20 things that need to be done (can be a shell script > with some logic in it), and have rootwrap call that *once*. That way you > increase speed by 20 times without dumping the security model.
Hi Thierry, Does rootwrap has to be written in Python? How much work would it be to rewrite it in C? It doesn't seem that big to me (less than 700 lines of python right now). Or is it too complicated, and then too dangerous, to be in such no-safety-net type of language? Thomas _______________________________________________ OpenStack-dev mailing list OpenStack-dev@lists.openstack.org http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev
