On Thu, 2008-12-04 at 16:07 -0500, Raymond Dans wrote: > Recently I submitted a patch (XECS-1852) which provides XML/RPC > interfaces to check for updates, query the system version and to > actually update the software on the system (sipX software only) using > yum. When I tested this on my development machine, everything worked > fine because my user was part of the "wheel" group and that group was > setup to not require a password for root. > > In trying out this capability on an actual ISO, the commands don't work > because the user "sipxchange" does not have sudo (with no password) > privileges. I assume that this is the case for this user because of > security. I also tried using the special application "sipxpackage" > used by SipXConfig with the same result. > > Is there any way around this issue other than putting sipxchange in the > wheel group and changing the group so that it doesn't require a password > for root?
Write a setuid wrapper program that validates its arguments carefully and then uses them to invoke yum. _______________________________________________ sipx-dev mailing list [email protected] List Archive: http://list.sipfoundry.org/archive/sipx-dev Unsubscribe: http://list.sipfoundry.org/mailman/listinfo/sipx-dev
