Kees,
Could you please:
bzr branch lp:~ubuntu-core-dev/eucalyptus/ubuntu
And give a quick review of ./tools/populate_arp.pl, which is ~25 lines
of perl before we add this to the euca_rootwrap whitelist?
Looks to me like it needs elevated privileges to read
('/var/log/messages', '/var/log/firewall', '/var/log/syslog',
'/var/log/kern.log'), which are all -rw-r----- syslog adm.
Other than opening these files, it just sends pings to all IPs it knows
about, which will update the arp tables. (I don't entirely understand
why this is necessary, perhaps Dan can answer...)
** Changed in: eucalyptus (Ubuntu Lucid)
Status: Triaged => Incomplete
** Changed in: eucalyptus (Ubuntu Lucid)
Assignee: Dustin Kirkland (kirkland) => Daniel Nurmi (nurmi)
** Changed in: eucalyptus (Ubuntu Lucid)
Assignee: Daniel Nurmi (nurmi) => Kees Cook (kees)
** Changed in: eucalyptus (Ubuntu Lucid)
Status: Incomplete => Triaged
--
Disallowed command //usr/share/eucalyptus/populate_arp.pl
https://bugs.launchpad.net/bugs/461829
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to eucalyptus in ubuntu.
--
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
