search for: unpriviledg

Hi all, Some time ago, I wrote a small CGI script to let users change their IMAP password. The script runs as www-data user and uses "doveadm pw" to check if a password hash matches a password. Unfortunately, this means that I have to make large parts of my dovecot config world-readable, as otherwise I get errors like this: doveconf: Fatal: Error in configuration file

hi, i have a problem while creating the guest domain. i have three partitions /dev/VolGroup00/LogVol00 as ''/'' root partition /dev/VolGroup00/LogVol01 as /home /dev/VolGroup00/LogVol02 as swap partition i have exported the root filesystem as the root file system in the virtual machine. ( Can i do so ??? ) My config file for the domainU is as follows:

...forge.net> ----------------------------------------------------------------------- I''d like to know if this is something to worry about or if I should start looking for something else. I''m running Xen 2.0, with a Fedora Core 3 Domain0, and (trying to) connecting to a Gentoo Unpriviledged Domain. Many thanks! -- Ramiro Brito Willmersdorf rbw@demec.ufpe.br Departamento de Eng. Mecânica UFPE ------------------------------------------------------- SF email is sponsored by - The IT Product Guide Read honest & candid reviews on hundreds of IT Products from...

...uot; 2>&1 check auth-7 0 "${MBOX}" '4294967295 0' you know. Terrible this does not work for GSSAPI, i am about to ask the MIT people to add two pseudo credentials, one which always works and one which does not, so that automatic testing is possible at all, and via unpriviledged account!) But wouldn't this be an improvement, extending the protocol so that it announces a fingerprint checksum digest, which then can be used in return to report client certificate fingerprints to the dovecot auth server? Like that even client certificate verification could be handled by...

...loaded? - If tinc can take care of loading the tun module, how do I set this up? Is the "alias char-major-10-200 tun" entry in the /etc/modules.conf enough? - I'm trying to create a connection from home to the office. Unfortunately my home cable router maps the 655 port to an unpriviledged port when it does outgoing NAT. So I cannot initiate the connection from home. My idea as a workaround is to log in to the office firewall running tinc by ssh and do a ping to my home host. The home cable router is configured to redirect the incoming traffic on the tinc port to my home wo...

...T work is adding printers as a non admin user with Windows XP (Professional). It worked under Win2k! When I use XP, the only option I have is to first add the printer as either the local administrator of the machine, or the domain administrator, and only then I can add this printer as a normal, unpriviledged domain user. Uh. And I have NOTHING in the Samba logs. As my smb.conf is relatively long, I'll put only what I think is relevant below. Any hints appreciated, I've been stuck with this problem for six months, and not a hint of a solution yet :( --- printcap name = cups...

...icates and keys which is readable only by > root and should not be readable in userland. This behavior is this because > it was the behavior used when using OpenSSL. Modifying this behavior > implies to modify key/certificate storage and acces right policy. > Well, NUT uses a dedicated unpriviledged user to run ("nut" in my case) so why not initialize the SSL stuff after forking? Before forking, just check that the SSL cert/key files belong to the same user as the user which started "upsd" and throw an error message to the logs if it's not the case to warn the user....

...readable only >> by root and should not be readable in userland. This behavior is this >> because it was the behavior used when using OpenSSL. Modifying this >> behavior implies to modify key/certificate storage and acces right policy. >> > > Well, NUT uses a dedicated unpriviledged user to run ("nut" in my case) so > why not initialize the SSL stuff after forking? > > Before forking, just check that the SSL cert/key files belong to the same > user as the user which started "upsd" and throw an error message to the > logs if it's not the...

Some precisions: we are not alone, some projects had similar problem: http://bugs.bitlbee.org/bitlbee/ticket/785 And the problem is really coming from NSS initialization. Discussion about the issue here : http://osdir.com/ml/mozilla.crypto/2002-08/msg00016.html There is a workaround to use NSS with fork but it is more setting a flag to share some resources (primarily sockets) but must

...estroy rawhide or /usr/sbin/xm destroy 3. This worked. I was able to boot the VM running the same kernel as Dom0 is running after copying the /lib/modules directory to the VM''s image. Anyone know how you determine the difference between a priviledged domain such as Dom0...1...2 and an unpriviledged domain? Regards, Steven __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com _______________________________________________ Xen-users mailing list Xen-users@lists.xensource.com http://l...

> From: Steven Critchfield [mailto:critch@basesys.com] > On Fri, 2003-08-15 at 12:42, Adams, Gavin wrote: > > Another thing I'm doing while soak testing an application (pre > > /etc/init.d startup script) is to run 'screen' as an unpriviledged user, > > then 'su -' to root (or even better, 'sudo su -') followed by starting > > the application. > > "sudo su -" is kind of a stange thing to do. You would probably be > better of doing "sudo bash" as it also will give you a bash prom...

Hi. i' m trying to install Wine from synaptic but when i try to open it by terminal tis is the answer: Application tried to create a window, but no driver could be loaded. The X11 driver is missing. Check your build! Application tried to create a window, but no driver could be loaded. The X11 driver is missing. Check your build! err:ole:apartment_createwindowifneeded CreateWindow failed

...ox, i get the following: ~$ mount_smbfs //neelix/mike /mnt/mike Warning: no cfg file(s) found. mount_smbfs: can not setup kernel iconv table (default:tolower): syserr = Operation not permitted however, when i run the same command as root, it works as expected. furthermore, smbclient works under a unpriviledged account. there were no messages outputted to my log files. i've been google'ing for hours, as well as poring through man pages and documentation, and the samba list archive. i would very much appreciate your help. mike

I am having problems trying to run asterisk from a telnet session. I am able to su to root and the command asterisk does not work. Any ideas why this may be occurring? I thought Asterisk could be configured remotely as well as run remotely? Thanks in advance. Steve Lane -------------- next part -------------- An HTML attachment was scrubbed... URL:

...check auth-7 0 "${MBOX}" '4294967295 0' > > you know. Terrible this does not work for GSSAPI, i am about to > ask the MIT people to add two pseudo credentials, one which always > works and one which does not, so that automatic testing is > possible at all, and via unpriviledged account!) > > But wouldn't this be an improvement, extending the protocol so > that it announces a fingerprint checksum digest, which then can be > used in return to report client certificate fingerprints to the > dovecot auth server? Like that even client certificate > ve...

...and keys which is readable only by root and should not be readable in userland. This behavior is this because it was the behavior used when using OpenSSL. Modifying this behavior implies to modify key/certificate storage and acces right policy. >> >> >> Well, NUT uses a dedicated unpriviledged user to run ("nut" in my case) so why not initialize the SSL stuff after forking? >> >> Before forking, just check that the SSL cert/key files belong to the same user as the user which started "upsd" and throw an error message to the logs if it's not the case t...

Currently, the following commands succeed. # cat /proc/swaps Filename Type Size Used Priority /dev/sda3 partition 8388604 0 -1 /dev/sdc8 partition 9765884 0 -2 # mkfs.btrfs /dev/sdc8 WARNING! - Btrfs v0.20-rc1-165-g82ac345 IS EXPERIMENTAL WARNING! - see

Problem: I'm trying to forward a port (say, port 25) of a SuSE 9.0 Linux system to an external client system (in this case running RedHat 9.0). It doesn't work, and the problem seems to be on the SuSE side. Details ======= On the client system, I run (where "suse-server" is the IP address of my SuSE server system to which I'm trying to connect) client> /usr/bin/ssh -f

Hi all, I have followed the wiki howto to install KVM on my C5 server with a F10 x86_64 guest. Howto here: http://wiki.centos.org/HowTos/KVM With one small problem here: http://www.centos.org/modules/newbb/viewtopic.php?post_id=74275&topic_id=19726 the guest is really running stable for one week now. Maybe someone could have a look at udev why it always sets permission for /dev/net/tun

Is it possible to use some kind of netlogon script to add a printer? net use \\server\printert ??