Sorry for misunderstood the code ,test and submit the patch mistakenly,
will submit a new one.
2012/6/8 Daniel P. Berrange
> On Tue, Jun 05, 2012 at 02:21:10PM +0800, Royce Lv wrote:
> > Libvirt-socket-rw and libvirt-socket-ro are not used only for libvirt or
> > root user,
> > but also for unp
On Tue, Jun 05, 2012 at 02:21:10PM +0800, Royce Lv wrote:
> Libvirt-socket-rw and libvirt-socket-ro are not used only for libvirt or
> root user,
> but also for unprivileged application such as vdsm,
> Restrain the rundir only read/search for libvirt prevent comunication
> with unprivileged client
2012/6/5 Dave Allan
> On Tue, Jun 05, 2012 at 02:21:10PM +0800, Royce Lv wrote:
> > Libvirt-socket-rw and libvirt-socket-ro are not used only for libvirt or
> > root user,
> > but also for unprivileged application such as vdsm,
> > Restrain the rundir only read/search for libvirt prevent comunic
On Tue, Jun 05, 2012 at 02:21:10PM +0800, Royce Lv wrote:
> Libvirt-socket-rw and libvirt-socket-ro are not used only for libvirt or
> root user,
> but also for unprivileged application such as vdsm,
> Restrain the rundir only read/search for libvirt prevent comunication
> with unprivileged client
Libvirt-socket-rw and libvirt-socket-ro are not used only for libvirt or
root user,
but also for unprivileged application such as vdsm,
Restrain the rundir only read/search for libvirt prevent comunication
with unprivileged client,change rundir the permission equals to the sockets
permission.
See