Hi On 24 July 2013 22:18, Derek Higgins <der...@redhat.com> wrote: > - setup passwordless sudo or > Doesn't sound like a super awesome option to me, it places an ugly > security problem on anyone wanting to set this up anywhere, imo.
I don't think its any worse then the security implications of running di-b as root. Assuming I interpreted this option correctly, we're talking about giving some user blanket passwordless sudo, which seems like the kind of requirement that no sane sysadmin is going to be interested in granting without some seriously onerous precautions to protect against abuse/exploit. What's the advantage here over simply fixing di-b to work when invoked with sudo? -- Cheers, Chris
_______________________________________________ OpenStack-dev mailing list OpenStack-dev@lists.openstack.org http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev
