[grsec] Simple /etc/grsec/policy question [solved]
ixion
ixion at indigorobot.com
Mon Sep 5 19:15:58 EDT 2005
Ah, I setup root with uG, but failed to setup an actual admin role. When
looking at the dist policy file, found admin at the top, added it to my
custom policy file, and appears to work well.
Thanks for your help and patience, Brad!
Have a wonderful evening.
On Mon, 2005-09-05 at 14:05 -0400, Steven McCoy wrote:
> > # gradm -a admin
> > -bash: /sbin/gradm: Permission denied
> >
> > What parameters are needed in the policy file to enable a certain user
> > grsec admin privs?
>
> "G" is needed in the role for the user so that they can use gradm to
> authenticate to the kernel. role_transitions admin is also needed for
> the role to allow the user to switch to the admin role.
>
> -Brad
>
> On Sat, 2005-09-03 at 13:17 -0400, ixion wrote:
> > Hey everyone,
> >
> > Have finally delved into the RBAC system, and I have to say I am amazed
> > at the flexibility and functionality of /etc/grsec/policy, WOW!
> >
> > I may have goofed up a bit in getting this rolling, though. I didn't
> > have a user jump to admin role while learning, and now am locked out
> > once grsec is enabled:
> >
> > # gradm -a admin
> > -bash: /sbin/gradm: Permission denied
> >
> > What parameters are needed in the policy file to enable a certain user
> > grsec admin privs?
> >
> > Thank you all for your patience with a grsec n00b.
> >
> > Cheers!
> >
> > _______________________________________________
> > grsecurity mailing list
> > grsecurity at grsecurity.net
> > http://grsecurity.net/cgi-bin/mailman/listinfo/grsecurity
More information about the grsecurity
mailing list