https://bugzilla.novell.com/show_bug.cgi?id=870607
https://bugzilla.novell.com/show_bug.cgi?id=870607#c15
Christian Boltz
Would it be ok to limit (rw) access for winbindd to /var/cache/krb5rcache/ (KRB5RCACHEDIR)?
(In reply to comment #11)
That's how the permissions would look like in the directory:
vejle:~ # LC_ALL=POSIX ls -al /var/cache/krb5rcache/ total 4 drwxrwx--- 1 root root 30 Apr 1 16:11 . drwxr-xr-x 1 root root 170 Apr 1 15:59 .. -rw------- 1 LURCH\larsm root 165 Apr 1 16:11 vejle-044_10000
Allowing a directory that is only writeable for a specific user (in this case root or someone in the root group - typically only root) is _much_ better than /var/tmp/ where everybody can do funny stuff. Your SR looks good at the first look, but I'll give it a second look before accepting it (might take some days - I'm too busy at the moment :-( ) -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.