R: [rsbac] 1.1.2 softmode yet access denied
Tony den Haan
Sun Jun 23 17:01:06 2002
On Sun, 23 Jun 2002, Matthias J=E4nichen wrote:
> At 09:44 23.06.02 +0200, Alberto Guglielmo wrote:
> >As you can see the forbidden object is "RSBAC-internal", in particular i=
> >the directory in which rsbac (1.1.2) stores all his ACL etc.
> >There is no need to access directly these items, the backup_all utility
> >extracts all the stuff anyway via the proper utilities (in /usr/local/bi=
> >I never tried the backup_all_1.1.2 on 1.2.0 rsbac systems, so I don't kn=
> >if this "legal" error blocks the backup process, and as of today I'm una=
> >to try it (no more 1.1.2 systems to upgrade...), but Amon Ott will surel=
> >of help if so.
if it's really harmless, it should be in the doc, i didn't feel
comfortable booting ( and haven't done so yet ) as long as i get this
> >In the first lines of the utility (which is a shell-script) you can read
> ># It is intended to run with v1.1.2 admin tools under a RSBAC v1.1.2 ker=
> ># and the restore must run with v1.2.0 admin tools under a v1.2.0 kernel=
> >Are you dumping attributes with a 1.1.2 kernel and 1.1.2 tools?
yes, just backup_all_1.1.2 from 1.2, as documented
> I would also suggest not to run under root but under secoff!