RBAC problem
2007-12-25 3:10:00
normally done by root. So, to kill the processes first,
My /etc/secirity/exec_attr entry looks like this
bouncews:suser:cmd:::/bin/pkill:euid=root,egid=bin
and I created a role called bouncews as:
#roleadd -m -P "bouncews" bouncews
and I attached the role to a user as
#usermod -R "bouncews" daniel
Now when try to kill the process of java as me, I get
# su - daniel
$ su bouncews -c /bin/pkill java
Password:
pkill: No matching criteria specified
Usage: pkill [-signal] [-fnovx] [-P ppidlist] [-g pgrplist] [-s sidlist]
[-u euidlist] [-U uidlist] [-G gidlist] [-J projidlist]
[-T taskidlist] [-t termlist] [pattern]
and then when I try to su to the role itself and do the kill:
$ su - bouncews
passwd:
$ /bin/pkill java
pkill: Failed to signal pid 17870: Not owner
pkill: Failed to signal pid 17852: Not owner
pkill: Failed to signal pid 17848: Not owner
$
what am I doing wrong? I can do "pkill java" as root and kills the
processes fine but not as the RBAC role I created.
Any ideas?
Thanks
-Daniel
Comments
Got something to say?
You must be logged in to post a comment.
