per http://opennebula.org/documentation:rel3.6:evmwareg there are 2
recommendations to make these binaries setuid/setgid root. Now I can
readily guess that the former is so that the command can run unimpeded on
all mounted filesystems which are naturally owned root:root. And the
latter is because 'vim-cmd' will need root to change the host environment
be it mounts, devices, adn interfaces.
One problem. The changes don't survive a reboot you know... (esxi)
The right way to do this is to add 'oneadmin's public ssh key to root's
and ssh in directly. Or cobble up a rc.local that re-applies 'chmod +s'
every time the box boots. I vote for the former.
--
Cloud Services Architect, Senior System Administrator
InfoRelay Online Systems (www.inforelay.com)
_______________________________________________
Users mailing list
[email protected]
http://lists.opennebula.org/listinfo.cgi/users-opennebula.org
