euca_rootwrap makes eucalyptus user equivalent to root
Bug #436977 reported by
Dustin Kirkland
This bug affects 2 people
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Eucalyptus |
Confirmed
|
Undecided
|
Daniel Nurmi | ||
eucalyptus (Ubuntu) |
Fix Released
|
High
|
Dustin Kirkland | ||
Karmic |
Fix Released
|
High
|
Dustin Kirkland |
Bug Description
ubuntu@euca-cc3:~$ ls -alF /usr/lib/
-rwsr-xr-- 1 root eucalyptus 6160 2009-09-25 15:27 /usr/lib/
This program allows the eucalyptus user to run basically anything as root.
We acknowledge that the eucalyptus user periodically needs to do privileged operations. This needs to be handled in a more fine-grained manner, though.
:-Dustin
Changed in eucalyptus (Ubuntu Karmic): | |
milestone: | none → ubuntu-9.10 |
Changed in eucalyptus (Ubuntu Karmic): | |
status: | Confirmed → Triaged |
visibility: | private → public |
tags: | added: eucalyptus |
Changed in eucalyptus (Ubuntu Karmic): | |
assignee: | nobody → Dustin Kirkland (kirkland) |
Changed in eucalyptus (Ubuntu Karmic): | |
status: | Triaged → In Progress |
Changed in eucalyptus: | |
assignee: | nobody → Daniel Nurmi (nurmi) |
To post a comment you must log in.
This report is currently private. I don't know that we have the resources to solve this problem in time for Karmic. This bug is being opened against Ubuntu and upstream to track it, however, as this is something we absolutely must fix in Lucid.
:-Dustin