WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 		  
Home Products Support Community News
 
   
 

xen-users

[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Xen-users] Access control for the xm command

from [Grant McWilliams] [Permanent Link][Original]
To: Keith Coleman <list.keith@xxxxxxxxxxx>
Subject: Re: [Xen-users] Access control for the xm command
From: Grant McWilliams <grantmasterflash@xxxxxxxxx>
Date: Tue, 31 Mar 2009 12:03:42 -0700
Cc: Martti Kuparinen <martti.kuparinen@xxxxxx>, xen-users@xxxxxxxxxxxxxxxxxxx
Delivery-date: Tue, 31 Mar 2009 12:04:42 -0700
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:in-reply-to:references:date :received:message-id:subject:from:to:cc:content-type; bh=8hDNlpHW67hXkhE7XkJJW0oeXH9GhyLJemX5zAT3hkI=; b=tX5MDCpjtfaw7eb8zcAk00epkLK/HQQxKmOgBsTBDj6J013pUHgsgMmbOAFFrwwHnH S/EZtbIivU8lJF/wPx9v65lFe0iMoVCfKNR+nZtbcoHafn7VIMhSughHxuKijqd/qmTd elnOtIzCufc1GUZ4sdDSDzI7eQ+UkG+0VKobY=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; b=Yqr/vEwUTeuCXDnBNPr/9xCoH2oy69mYRpEsKXEjBCYbSFTxks/AasAPdJPpPTKaFz N4Xw7hQgP5pChV8dUYuzIUojESd0U5X5leB5mmt4QFajfXCdukVqi71fXy8gZIJkvss1 O2VII7oE060rz/V1ua1alItBpMAuzw398cfVA=
Envelope-to: www-data@xxxxxxxxxxxxxxxxxxx
In-reply-to: <5411dbdc0903311033p14a8648bl32a0d207b41a35ef@xxxxxxxxxxxxxx>
List-help: <mailto:xen-users-request@lists.xensource.com?subject=help>
List-id: Xen user discussion <xen-users.lists.xensource.com>
List-post: <mailto:xen-users@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=unsubscribe>
References: <49D24B02.4000504@xxxxxx> <5411dbdc0903311033p14a8648bl32a0d207b41a35ef@xxxxxxxxxxxxxx>
Sender: xen-users-bounces@xxxxxxxxxxxxxxxxxxx

On Tue, Mar 31, 2009 at 10:33 AM, Keith Coleman <list.keith@xxxxxxxxxxx> wrote:
On 3/31/09, Martti Kuparinen <martti.kuparinen@xxxxxx> wrote:
> Hi,
>
>  Say I have these domUs and their administrators on my dom0:
>
>  guest   admin(s)
>  -----   --------
>  vm1     user1, user3
>  vm2     user2, user3
>  vm3     user3
>
>  Each administrator should be able to do whatever he wants to do with the xm
> command on the domU he's maintaining but he should not be able to perform
> any xm actions on domUs where he's not supposed to have access to. So
> instead of giving general access for "sudo xm ..." I need something more
> fine grained.
>
>  Instead of writing my own script to check user's access to the given domU,
> is there any nice wrapper script for xm which already does this kind of
> access control checks? I hate reinventing the wheel again...
>
>  My dom0 is Debian 5.0 with self-compiled Xen 3.3.1 and libvirtd 0.6.1 if
> that makes any difference...
>
>  Martti
>

>

Xen Shell - http://www.xen-tools.org/software/xen-shell/


Keith Coleman

If you can get it to work as any user other than root. I couldn't after several hours and never had time to find out why.

Grant McWilliams

Some people, when confronted with a problem, think "I know, I'll use Windows."
Now they have two problems.


_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [Xen-users] ebtables tying mac to ip problem, David Markey
Next by Date:  Re: [Xen-users] Forwarding USB-Modem into guest? Impossible?, Abhinav Lele
Previous by Thread:  Re: [Xen-users] Access control for the xm command, Keith Coleman
Next by Thread:  Re: [Xen-users] Access control for the xm command, Thomas Goirand
Indexes:  [Date] [Thread] [Top] [All Lists]
 
   

Copyright , Citrix Systems Inc. All rights reserved. Legal and Privacy