Hi, I'm trying to use RBAC for Apache 2.2 service management. I did the following changes. Please let me know if this is the right approach ? I have also attached the diffs of the files modified. Kindly review.
Apache2 in SFW is configured to run as "webservd" user. To enable this user to manage the Apache service, - added Apache2 specific authorization (solaris.smf.value.http/apache22, solaris.smf.manage.http/apache22) to auth_attr file. - modified user_attr file to assign the authorization to the user "webservd" - added auths to prof_attr file. - added general/value_authorization, general/action_authorization and http/value_authorization smf properties to http-apache2.xml . Thanks and Regards, Seema. -------------- next part -------------- A non-text attachment was scrubbed... Name: rbac_auth.diff Type: text/x-patch Size: 1829 bytes Desc: not available URL: <http://mail.opensolaris.org/pipermail/security-discuss/attachments/20071016/440f4e96/attachment.bin>
