Scott Lawrence wrote: > On Thu, 2008-12-04 at 16:07 -0500, Raymond Dans wrote: >> Recently I submitted a patch (XECS-1852) which provides XML/RPC >> interfaces to check for updates, query the system version and to >> actually update the software on the system (sipX software only) using >> yum. When I tested this on my development machine, everything worked >> fine because my user was part of the "wheel" group and that group was >> setup to not require a password for root. >> >> In trying out this capability on an actual ISO, the commands don't work >> because the user "sipxchange" does not have sudo (with no password) >> privileges. I assume that this is the case for this user because of >> security. I also tried using the special application "sipxpackage" >> used by SipXConfig with the same result. >> >> Is there any way around this issue other than putting sipxchange in the >> wheel group and changing the group so that it doesn't require a password >> for root? > > Write a setuid wrapper program that validates its arguments carefully > and then uses them to invoke yum. > >
Didn't Joe already write all the wrappers that might be needed. Why would we need a different set of wrappers when this command is called through XML/RPC and when it's called directly? D. _______________________________________________ sipx-dev mailing list [email protected] List Archive: http://list.sipfoundry.org/archive/sipx-dev Unsubscribe: http://list.sipfoundry.org/mailman/listinfo/sipx-dev
