-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Steffen Grunewald wrote: > On Thu, Nov 02, 2006 at 10:04:17AM -0500, Rob Munsch wrote: >> Thanks, but the first part of my output shows that ipmitool is working >> if i am root. Also, i have the ipmi initscript making the /dev/ipmi0 >> file with 0644 permissions: >> >> crw-r--r-- 1 root root 254, 0 Nov 1 17:21 /dev/ipmi0 > > Better make that 0660, change the group to something special, and make > your operators members of that group.
Fair enough. Hmm. Do you need write access to the device in order to see it? Maybe that's the issue... >> All the modules load, root can access ipmitool and all commands, the >> device is there, etc. But no other non-root user can use it. By the >> above i would have assumed i'd granted null user and hobbit user >> permission, but apparently i misunderstand something. > > Hmmm, how would you allow the "null user" access to IPMI while locking > others out? You're so askin' the wrong guy here :). My problem now is the opposite, it looks like a very insecure and permissive setup yet no one can access the thing. Argh. All i know for sure is i had this working for a while; i don't remember exactly how, thought i did; i rebooted the machine to see if everything came up in the order it should and the modules all loaded unattended; they did, and as root i can access the sensors to my heart's content; but as any non-root user, i can't do jack. This is the lowest-level stuff i've ever tackled, by quite a long shot. I found an old post in the archives with hex codes, and that's the only way i got the privs set up at all! (is there a nice list of those raw codes somewhere? i dug thru the specs until my eyes glazed.) For reference, this is the post that i found: http://www.mail-archive.com/ipmitool-devel@lists.sourceforge.net/msg00046.html - -- Rob Munsch Solutions For Progress IT www.solutionsforprogress.com -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFFShlfBvBcJFK6xYURAnxQAJ9lBgz6EaO75hE6FsjLtjmKRpBHKACfbOw/ KiT7AHyQNcsvyiw9/4B8qfw= =CI3a -----END PGP SIGNATURE----- ------------------------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642 _______________________________________________ Ipmitool-devel mailing list Ipmitool-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/ipmitool-devel
