On 05/17/2011 02:40 PM, Dimitri Maziuk wrote:
If you're the only user on your network and your name is root.
I don't follow. If you're rewriting the .ini file through Trac, it
arbitrates access to the file, so no matter who logs in to trac, the
webserver is what is accessing the filesystem.
If you're having folks ssh in and edit the .ini file manually, but don't
want them all to be able to edit everyone else's trac .ini files, then
yeah, you're doing groups or sudo.
Otherwise you're looking at creating and managing lots of groups and
most of us just say "screw it, chmod -R a+w" even before their number
hits 32.
So, "security is hard and I'm a lazy sysadmin"?
If it makes you feel any better, HBGary Federal and Sony appear to have
sysadmins which take a similar view, so you're not alone in the world.
--
Matthew Caron
Build Engineer
Sixnet | www.sixnet.com
O +1 518 877 5173 Ext. 138
F +1 518 602 9209
matt.ca...@sixnet.com
--
You received this message because you are subscribed to the Google Groups "Trac
Users" group.
To post to this group, send email to trac-users@googlegroups.com.
To unsubscribe from this group, send email to
trac-users+unsubscr...@googlegroups.com.
For more options, visit this group at
http://groups.google.com/group/trac-users?hl=en.
