ELOG

Demo Discussion

Forum Config Examples Contributions Vulnerabilities

Discussion forum about ELOG

Not logged in

Back | Find | Login | Help

secure way to allow users create logbook, posted by Szu-Ching Peckner on Tue Aug 28 23:02:07 2012

Re: secure way to allow users create logbook, posted by Stefan Ritt on Wed Aug 29 10:46:49 2012

Re: secure way to allow users create logbook, posted by Szu-Ching Peckner on Wed Aug 29 14:35:45 2012

Re: secure way to allow users create logbook, posted by Szu-Ching Peckner on Wed Aug 29 18:16:37 2012

Re: secure way to allow users create logbook, posted by Stefan Ritt on Thu Aug 30 10:00:07 2012

Re: secure way to allow users create logbook, posted by Szu-Ching Peckner on Thu Aug 30 22:47:50 2012

Message ID: 67324 Entry time: Wed Aug 29 14:35:45 2012 In reply to: 67323

Icon:

Author:

Szu-Ching Peckner

Author Email:

speckner@nd.edu

Category:

Question

OS:

Linux

ELOG Version:

latest

Subject:

Re: secure way to allow users create logbook

Stefan Ritt wrote:

Szu-Ching Peckner wrote:

I don't think there is a good secure way so far, but would like to have your opinion.

If I want user to create logbook for themselves, what's the best way to do it? I guess Execute $attribute = <command> may work, have it write to cfg file, but obviously it impose security problem. Is there a good and secure way to allow user to create logbook themselves?

Actually there is no good secure way. What I usually do is to give users admin rights on individual logbooks, then they can change the config of that logbook. Many times adding some attribute is as good as creating new logbooks. Like if you need two logbooks "home" and "work", you can create an attribute "type" and let the type be "home" or "work". With conditional attributes you can make the logbook behave differently for the two values of "type" and get most functionality of two separate logbooks.

- Stefan

Thanks, that is good option.

ELOG V3.1.5-fe60aaf