I think root should be a role everywhere. Even if root is a role, you can still get it in with
zlogin -S zonename Or you could zlogin as a normal user and su to root. --Glenn Mike John wrote: > In a TX system with labelled zones, it is expected that /etc/user_attr > within the labelled zones is identical or different from that in the > global zone? > > I had assumed the former, and have cross-mounted /etc/user_attr from the > global zone, but have come up with a case which doesn't work in that case: > > I want to run pkgadd within (just) the labelled zone. Root is a role > rather than a user, so I can assume the root role which gets me to the > global zone, but I cannot then zlogin to the labelled zone (because root > is a role there too, and you can't login as a role.) > > Which leads me to think that root needs to be a role as far the global > zone is concerned and a normal user as far as other zones are concerned, > which implies that /etc/user_attr is different. > > Mike > _______________________________________________ > security-discuss mailing list > security-discuss at opensolaris.org >
