On Fri, 2008-12-05 at 09:27 -0500, Damian Krzeminski wrote: > Scott Lawrence wrote: > > On Thu, 2008-12-04 at 16:07 -0500, Raymond Dans wrote: > >> Recently I submitted a patch (XECS-1852) which provides XML/RPC > >> interfaces to check for updates, query the system version and to > >> actually update the software on the system (sipX software only) using > >> yum. When I tested this on my development machine, everything worked > >> fine because my user was part of the "wheel" group and that group was > >> setup to not require a password for root. > >> > >> In trying out this capability on an actual ISO, the commands don't work > >> because the user "sipxchange" does not have sudo (with no password) > >> privileges. I assume that this is the case for this user because of > >> security. I also tried using the special application "sipxpackage" > >> used by SipXConfig with the same result. > >> > >> Is there any way around this issue other than putting sipxchange in the > >> wheel group and changing the group so that it doesn't require a password > >> for root? > > > > Write a setuid wrapper program that validates its arguments carefully > > and then uses them to invoke yum. > > > > > > Didn't Joe already write all the wrappers that might be needed. Why would > we need a different set of wrappers when this command is called through > XML/RPC and when it's called directly?
I don't believe it should be any different. _______________________________________________ sipx-dev mailing list [email protected] List Archive: http://list.sipfoundry.org/archive/sipx-dev Unsubscribe: http://list.sipfoundry.org/mailman/listinfo/sipx-dev
