On 2011-05-04 15:19, Florian Haas wrote:
> On 2011-04-20 14:37, Florian Haas wrote:
>> Dominik doesn't have a github repo yet, so I added this to a separate
>> branch in mine. The current revision is here:
>>
>> https://github.com/fghaas/resource-agents/blob/symlink/heartbeat/symlink
>>
>> Please c
On Wed, May 4, 2011 at 4:36 PM, Lars Ellenberg
wrote:
> Services running under Pacemaker control are probably "critical",
> so a malicious person with even only "stop" access on the CIB
> can do a DoS. I guess we have to assume people with any write access
> at all to the CIB are "trusted", an
On 5/5/2011 at 12:36 AM, Lars Ellenberg wrote:
> On Wed, May 04, 2011 at 03:06:27PM +0200, Florian Haas wrote:
> > Coming back to this one, as the discussion seems to have died down.
> >
> > On 2011-04-20 19:00, Lars Ellenberg wrote:
> > > Oh, well, thinking about non-roots that may have cib
On Wed, May 04, 2011 at 03:06:27PM +0200, Florian Haas wrote:
> Coming back to this one, as the discussion seems to have died down.
>
> On 2011-04-20 19:00, Lars Ellenberg wrote:
> > Oh, well, thinking about non-roots that may have cibadmin karma,
> > they now can configure a resource that will re
On 2011-04-20 14:37, Florian Haas wrote:
> On 2011-04-20 11:41, Dominik Klein wrote:
>> Hi
>>
>> I wrote a new RA that can manage a symlink.
>>
>> Configuration:
>>
>> primitive mylink ocf:heartbeat:symlink \
>> params link="/tmp/link" target="/tmp/target" \
>> op monitor interval="15" ti
On 2011-04-22 14:25, Alan Robertson wrote:
> Drbdlinks was never converted to an OCF RA, that I recall. It handles
> cases of needing to restart the logging system when you changed symlnks
> around - mainly for chroot services. I've used it for many years. You
> can find the source for it her
Coming back to this one, as the discussion seems to have died down.
On 2011-04-20 19:00, Lars Ellenberg wrote:
> Oh, well, thinking about non-roots that may have cibadmin karma,
> they now can configure a resource that will remove /etc/passwd.
> I'm not sure if I like that.
>
> How about a staged
On 04/21/2011 01:30 AM, Dominik Klein wrote:
>> Am I too paranoid?
> I don't think you are. Some non-root pratically being able to remove any
> file is certainly a valid concern.
>
> Thing is: I needed an RA that configured a cronjob. Florian suggested
> writing "the" symlink RA instead, that could
On 2011-04-20 19:00, Lars Ellenberg wrote:
> On Wed, Apr 20, 2011 at 06:49:48PM +0200, Lars Ellenberg wrote:
> [a lot]
>
> I know I'm paranoid.
> Am I too paranoid?
Patches welcome.
Cheers,
Florian
signature.asc
Description: OpenPGP digital signature
___
> Am I too paranoid?
I don't think you are. Some non-root pratically being able to remove any
file is certainly a valid concern.
Thing is: I needed an RA that configured a cronjob. Florian suggested
writing "the" symlink RA instead, that could manage symlink. Apparently
there was an IRC discussio
On Wed, Apr 20, 2011 at 06:49:48PM +0200, Lars Ellenberg wrote:
> On Wed, Apr 20, 2011 at 02:37:00PM +0200, Florian Haas wrote:
> > On 2011-04-20 11:41, Dominik Klein wrote:
> > > Hi
> > >
> > > I wrote a new RA that can manage a symlink.
> > >
> > > Configuration:
> > >
> > > primitive mylink o
On Wed, Apr 20, 2011 at 02:37:00PM +0200, Florian Haas wrote:
> On 2011-04-20 11:41, Dominik Klein wrote:
> > Hi
> >
> > I wrote a new RA that can manage a symlink.
> >
> > Configuration:
> >
> > primitive mylink ocf:heartbeat:symlink \
> > params link="/tmp/link" target="/tmp/target" \
> >
On 2011-04-20 11:41, Dominik Klein wrote:
> Hi
>
> I wrote a new RA that can manage a symlink.
>
> Configuration:
>
> primitive mylink ocf:heartbeat:symlink \
> params link="/tmp/link" target="/tmp/target" \
> op monitor interval="15" timeout="15"
>
> This will basically
> ln -s /tm
Hi
I wrote a new RA that can manage a symlink.
Configuration:
primitive mylink ocf:heartbeat:symlink \
params link="/tmp/link" target="/tmp/target" \
op monitor interval="15" timeout="15"
This will basically
ln -s /tmp/target /tmp/link
hth
Dominik
#!/bin/bash
#
#
# An OCF RA
14 matches
Mail list logo