< Previous by Date	Date Index	Next by Date >
< Previous in Thread	Thread Index

Re: [sipX-dev] Input on XCF-651 implementation (Restore pagefromsipXconfig UI)

From: "Picher, Michael" <mpicher@xxxxxxxx>
Date: Thu, 5 Apr 2007 14:22:07 -0400

How about giving us a flag in the config file to enable or disable the
reboot option in the Config Server?

Mike

-----Original Message-----
From: sipx-dev-bounces@xxxxxxxxxxxxxxxxxxx
[mailto:sipx-dev-bounces@xxxxxxxxxxxxxxxxxxx] On Behalf Of Martin
Steinmann
Sent: Thursday, April 05, 2007 10:42 AM
To: Damian Krzeminski; sipx-dev@xxxxxxxxxxxxxx
Subject: Re: [sipX-dev] Input on XCF-651 implementation (Restore
pagefromsipXconfig UI)

> >  >
> >  >With a password from the user is ok - just don't configure sudo
> >  >privileges for the process.
> >
> > I might have missed this, but why do we need root access?  The
database
> > and all the config files in /etc/sipxpbx should be owned by the
> > sipXconfig process.
> >
> > In my view, there are two reasons to integrate "restore" into
> sipXconfig:
> >
> > a) Ease of use: Make it unnecessary for an admin to use a console
> > b) Being able to create a closed system, where the admin is not
given
> > root access but can still do restore
> >
> > While objective one is currently our main one, requiring a root
password
> > for "restore" defeats objective two.
> >
> > --martin
> >
> 
> Fact: you need to restart sipXpbx after the restore
> Fact: you need to be root to restart sipXpbx
> 
> Question: Would you rather not have restore feature at all if it
required
> root access?
> 
> To recapitulate the discussion: we talked about setuid solution, and
sudo
> solution - both raised
> security concerns. I am not an expert here: I'd say let's implement
the
> solution with asking for
> root password while waiting for a better idea to emerge.
> D.
> 

Objective a) above is more important. Requiring console access to
restore a backup is cumbersome and intimidating for most people. In that
context requiring root access is acceptable.

However, I am afraid we are setting a precedent that we later have to
undo.  sipXconfig today is able to restart all the different processes
and servers individually from the Services page. How is this different
from the "restart" you require after a restore?  Are you saying that a
process under Linux cannot restart itself but requires root privileges
to do so?

--martin


_______________________________________________
sipx-dev mailing list
sipx-dev@xxxxxxxxxxxxxxxxxxx
List Archive: http://list.sipfoundry.org/archive/sipx-dev
Unsubscribe: http://list.sipfoundry.org/mailman/listinfo/sipx-dev

References:
- Re: [sipX-dev] Input on XCF-651 implementation (Restore pagefrom sipXconfig UI)
  - From: Martin Steinmann

Prev by Date: [sipX-dev] sipxproc/process.cgi - start/stop/restart all services? (XCF-651)
Next by Date: Re: [sipX-dev] sipxproc/process.cgi - start/stop/restart all services? (XCF-651)
Previous by thread: Re: [sipX-dev] Input on XCF-651 implementation (Restore pagefrom sipXconfig UI)
Next by thread: [sipX-dev] Global Call Pickup: "*allcredentials" in SUBSCRIBE To: field
Index(es):
- Date
- Thread