Hi, On Thu, Oct 22, 2015 at 1:44 AM, Heiko Hund <heiko.h...@sophos.com> wrote:
> On Tuesday 20 October 2015 22:12:06 Selva Nair wrote: > > > But a sever admin would not want it in the system as it can allow any > user > > with some VPN server account to change the routes etc using the > > service..(please correct me if I'm mistaken). > > If you do not make the configuration directory writable to anyone, then > you're > fine. IIRC the GUI has an command line option that would need to be > changed in > order to disable loading of arbitrary configs. Besides that the concept is > waterproof. If configs can be locked down by admin, I don't see how a GUI cmd line option can unprotect it. But, anyway, such details don't matter for this discussion at this stage. > Besides that the concept is waterproof. If its posible to do privilege separation without unpleasant side effects, that is great news and I'll take back my remarks against the interactive service. Then one service could be made to work for both "automatic" and interactive uses. Selva
