NTPd and ACL misbehaviour

Submit your RBAC policies or suggest policy improvements

NTPd and ACL misbehaviour

Postby superbock » Wed May 07, 2003 10:13 am

Hi!

ACL for ntpd for default role:

subject /usr/sbin/ntpd {
/etc/ntp/drift.TEMP rw
/etc/ntp/drift rw
/dev/log rw
}

yet.. this on my logs:

kernel: grsec: denied rename of /etc/ntp/drift.TEMP to /etc/ntp/drift by (ntpd:32104) uid/euid:38/38 gid/egid:38/38, parent (init:1) uid/euid:0/0 gid/egid:0/0

(there's no role for user ntp(38), it uses default)

Should i just use /etc/ntp rw ? Shouldn't the first two objects suffice?

Using 2.0pre3

TIA
superbock
 
Posts: 37
Joined: Sun Mar 31, 2002 6:34 pm

Postby spender » Wed May 07, 2003 10:25 am

Try current CVS of 2.0. I believe that's been fixed.

-Brad
spender
 
Posts: 2185
Joined: Wed Feb 20, 2002 8:00 pm


Return to RBAC policy development