R: [rsbac] 1.1.2 softmode yet access denied

[Tony den Haan]

On Sun, 23 Jun 2002, Matthias J=E4nichen wrote:

> At 09:44 23.06.02 +0200, Alberto Guglielmo wrote:
> >As you can see the forbidden object is "RSBAC-internal", in particular i=
s
> >the directory in which rsbac (1.1.2) stores all his ACL etc.
> >There is no need to access directly these items, the backup_all utility
> >extracts all the stuff anyway via the proper utilities (in /usr/local/bi=
n).
> >I never tried the backup_all_1.1.2 on 1.2.0 rsbac systems, so I don't kn=
ow
> >if this "legal" error blocks the backup process, and as of today I'm una=
ble
> >to try it (no more 1.1.2 systems to upgrade...), but Amon Ott will surel=
y be
> >of help if so.

if it's really harmless, it should be in the doc, i didn't feel
comfortable booting ( and haven't done so yet ) as long as i get this
warning.

> >In the first lines of the utility (which is a shell-script) you can read
> >
> ># It is intended to run with v1.1.2 admin tools under a RSBAC v1.1.2 ker=
nel,
> ># and the restore must run with v1.2.0 admin tools under a v1.2.0 kernel=
=2E
> >
> >Are you dumping attributes with a 1.1.2 kernel and 1.1.2 tools?

yes, just backup_all_1.1.2 from 1.2, as documented
>=20
> I would also suggest not to run under root but under secoff!

tried both..

tony