On 2011-05-04 15:19, Florian Haas wrote:
On 2011-04-20 14:37, Florian Haas wrote:
Dominik doesn't have a github repo yet, so I added this to a separate
branch in mine. The current revision is here:
https://github.com/fghaas/resource-agents/blob/symlink/heartbeat/symlink
Please comment
On Wed, May 4, 2011 at 4:36 PM, Lars Ellenberg
lars.ellenb...@linbit.com wrote:
Services running under Pacemaker control are probably critical,
so a malicious person with even only stop access on the CIB
can do a DoS. I guess we have to assume people with any write access
at all to the CIB
Coming back to this one, as the discussion seems to have died down.
On 2011-04-20 19:00, Lars Ellenberg wrote:
Oh, well, thinking about non-roots that may have cibadmin karma,
they now can configure a resource that will remove /etc/passwd.
I'm not sure if I like that.
How about a staged
On 2011-04-22 14:25, Alan Robertson wrote:
Drbdlinks was never converted to an OCF RA, that I recall. It handles
cases of needing to restart the logging system when you changed symlnks
around - mainly for chroot services. I've used it for many years. You
can find the source for it here:
On Wed, May 04, 2011 at 03:06:27PM +0200, Florian Haas wrote:
Coming back to this one, as the discussion seems to have died down.
On 2011-04-20 19:00, Lars Ellenberg wrote:
Oh, well, thinking about non-roots that may have cibadmin karma,
they now can configure a resource that will remove
Am I too paranoid?
I don't think you are. Some non-root pratically being able to remove any
file is certainly a valid concern.
Thing is: I needed an RA that configured a cronjob. Florian suggested
writing the symlink RA instead, that could manage symlink. Apparently
there was an IRC discussion
On 2011-04-20 19:00, Lars Ellenberg wrote:
On Wed, Apr 20, 2011 at 06:49:48PM +0200, Lars Ellenberg wrote:
[a lot]
I know I'm paranoid.
Am I too paranoid?
Patches welcome.
Cheers,
Florian
signature.asc
Description: OpenPGP digital signature
On 2011-04-20 11:41, Dominik Klein wrote:
Hi
I wrote a new RA that can manage a symlink.
Configuration:
primitive mylink ocf:heartbeat:symlink \
params link=/tmp/link target=/tmp/target \
op monitor interval=15 timeout=15
This will basically
ln -s /tmp/target /tmp/link
On Wed, Apr 20, 2011 at 02:37:00PM +0200, Florian Haas wrote:
On 2011-04-20 11:41, Dominik Klein wrote:
Hi
I wrote a new RA that can manage a symlink.
Configuration:
primitive mylink ocf:heartbeat:symlink \
params link=/tmp/link target=/tmp/target \
op monitor
On Wed, Apr 20, 2011 at 06:49:48PM +0200, Lars Ellenberg wrote:
On Wed, Apr 20, 2011 at 02:37:00PM +0200, Florian Haas wrote:
On 2011-04-20 11:41, Dominik Klein wrote:
Hi
I wrote a new RA that can manage a symlink.
Configuration:
primitive mylink ocf:heartbeat:symlink \
10 matches
Mail list logo