[Box Backup-dev] bin vs sbin

[Chris Wilson]

Hi James,

On Wed, 27 Feb 2008, James O'Gorman wrote:

>> Nothing major, but why do we treat bbackupctl as a system program and 
>> bbackupquery as a user program? They both need to run as the bbackupd 
>> user (usually root). And raidfile-config should probably be an sbin 
>> too.
>
> I agree with you actually - my patch differs from my original thought
> but I guess I forgot to trim that email enough :-)

Sorry, I did read the patch but obviously not well enough :-)

> I was in two minds about bbackupctl and bbackupquery. In theory, a 
> normal user could use bbackupquery, as long as they have read access to 
> the keys. ctl-type programs seem to vary, sometimes in bin, sometimes in 
> sbin. PostgreSQL's pg_ctl program is in bin, so I thought I'd follow 
> their lead, but please do let me know if you think we should change 
> this.

bbackupquery is dangerous for a normal user. You can read other users' 
files (including root's), and delete things from the store. If you have 
the keys you can cause havoc. bbackupctl allows users to shut down the 
bbackupd daemon. I don't think either of these is safe for "normal" users 
(non-admins).

>> Also, I think all the package scripts in contrib/ will have to be 
>> updated as well.
>
> I did have a quick grep of the whole tree and I *think* they do their 
> own thing, but yes, I'll double-check those.

I think the Solaris manifest file will need changing.

Cheers, Chris.
-- 
_____ __     _
\  __/ / ,__(_)_  | Chris Wilson <0000 at qwirx.com> - Cambs UK |
/ (_/ ,\/ _/ /_ \ | Security/C/C++/Java/Ruby/Perl/SQL Developer |
\__/_/_/_//_/___/ | We are GNU : free your mind & your software |