Kees,
Could you please:
bzr branch lp:~ubuntu-core-dev/eucalyptus/ubuntu
And give a quick review of ./tools/populate_arp.pl, which is ~25 lines
of perl before we add this to the euca_rootwrap whitelist?
Looks to me like it needs elevated privileges to read
('/var/log/messages', '/var/log/firewall', '/var/log/syslog',
'/var/log/kern.log'), which are all -rw-r----- syslog adm.
Other than opening these files, it just sends pings to all IPs it knows
about, which will update the arp tables. (I don't entirely understand
why this is necessary, perhaps Dan can answer...)
** Changed in: eucalyptus (Ubuntu Lucid)
Status: Triaged => Incomplete
** Changed in: eucalyptus (Ubuntu Lucid)
Assignee: Dustin Kirkland (kirkland) => Daniel Nurmi (nurmi)
** Changed in: eucalyptus (Ubuntu Lucid)
Assignee: Daniel Nurmi (nurmi) => Kees Cook (kees)
** Changed in: eucalyptus (Ubuntu Lucid)
Status: Incomplete => Triaged
--
Disallowed command //usr/share/eucalyptus/populate_arp.pl
https://bugs.launchpad.net/bugs/461829
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
