Re: [vyatta-svn] vyatta wan load balance project: Changes to 'islavista'

Stephen Hemminger Fri, 31 Oct 2008 11:22:07 -0700

On Fri, 31 Oct 2008 10:32:14 -0700
Mike Larson <[EMAIL PROTECTED]> wrote:


>  Makefile.am                                         |    1 +
>  scripts/vyatta-wlb-connection                       |    4 ++++
>  templates/show/wan-load-balance/connection/node.def |    2 +-
>  3 files changed, 6 insertions(+), 1 deletion(-)
> 
> New commits:
> commit c1c7a4968fa3bddc258e38f181c37c907e4f3557
> Author: slioch <[EMAIL PROTECTED]>
> Date:   Fri Oct 31 10:27:09 2008 -0700
> 
>     fix for bug 3608. add connnection comment to sudoers directory.
> 
> http://suva.vyatta.com/git/?p=vyatta-wanloadbalance.git;a=commitdiff;h=c1c7a4968fa3bddc258e38f181c37c907e4f3557
> _______________________________________________
> svn mailing list
> [email protected]
> http://mailman.vyatta.com/mailman/listinfo/svn

This needs a more secure design. Setuid shell scripts are inherently security 
holes.

How about writing vyatta-wlb-connection as short program?
_______________________________________________
svn mailing list
[email protected]
http://mailman.vyatta.com/mailman/listinfo/svn

Re: [vyatta-svn] vyatta wan load balance project: Changes to 'islavista'

Reply via email to