Válasz: [rsbac] NET_SHUTDOWN not granted
gabor.horvath at konicaminolta.hu
gabor.horvath at konicaminolta.hu
Mon Aug 2 15:16:37 CEST 2004
Hello,
you should also grant right to port 33994 (the other end of the
connection). In your case to ports above 1024 (-65535).
Bye,
Gabor Horvath
gabor.horvath at konicaminolta.hu
Andreas Baetz <lac01 at web.de>
Feladó: rsbac-bounces at rsbac.org
2004.08.02 14:25
Kérem, válaszoljon ennek a személynek: RSBAC Discussion and Announcements
Címzett: RSBAC Discussion and Announcements
<rsbac at rsbac.org>
Másolat:
Tárgy: [rsbac] NET_SHUTDOWN not granted
Hi, I have:
RSBAC Administration Tools v1.2.2
attr_set_file_dir -V 66050 FD
"//usr/local/MozillaFirebird/MozillaFirebird" rc_force_role 5
attr_set_file_dir -V 66050 FD "//usr/local/MozillaFirebird/run-mozilla.sh"
rc_force_role 5
net_temp -V 66050 new_template 84000 "int_tcp_6000"
net_temp -V 66050 set_address_family 84000 INET
net_temp -V 66050 set_type 84000 ANY
net_temp -V 66050 set_address 84000 x.0.0.0
net_temp -V 66050 set_valid_len 84000 8
net_temp -V 66050 set_protocol 84000 TCP
net_temp -V 66050 set_netdev 84000 ""
net_temp -V 66050 set_min_port 84000 6000
net_temp -V 66050 set_max_port 84000 6000
rc_set_item -V 66050 TYPE 8 type_netobj_name "remote_X_NO"
> rc_get_item -p ROLE 5 type_comp_netobj 8
00000000011111110010000000000000010000000000110000000
CLOSE
CREATE
READ
WRITE
BIND
LISTEN
ACCEPT
CONNECT
SEND
RECEIVE
NET_SHUTDOWN
everything works, but this gets logged:
rsbac_adf_request(): request NET_SHUTDOWN, pid 5103, ppid 5097, prog_name
MozillaFirebird, uid 500, target_type NETOBJ, tid d70a94b4 INET STREAM
proto TCP local eth0:x.x.x.x:33994 remote x.x.x.x:6000, attr , value 0,
result NOT_GRANTED by RC
What could be wrong ?
Andreas
_______________________________________________
rsbac mailing list
rsbac at rsbac.org
http://www.rsbac.org/mailman/listinfo/rsbac
More information about the rsbac
mailing list