On Thu, May 5, 2011 at 9:09 AM, Florian Haas wrote:
> Rather than going into ACLs in more detail, I wanted to highlight that
> however we limit access to the CIB, the resource agents still _execute_
> as root, so we will always have what would normally be considered a
> privilege escalation issue.
Rather than going into ACLs in more detail, I wanted to highlight that
however we limit access to the CIB, the resource agents still _execute_
as root, so we will always have what would normally be considered a
privilege escalation issue.
Now, we could agree on security guidelines for RAs, and som
