Demo Discussion
Forum Config Examples Contributions Vulnerabilities
  Discussion forum about ELOG  Not logged in ELOG logo
 Back  |  Find  |  Login  |  Help 
icon5.gif   [global] config still editable by admin of top group, posted by Damian Goeldi on Mon Sep 15 13:16:58 2025 
    icon2.gif   Re: [global] config still editable by admin of top group, posted by Stefan Ritt on Mon Sep 15 15:11:41 2025 
    icon2.gif   Re: [global] config still editable by admin of top group, posted by Konstantin Olchanski on Wed Sep 17 21:55:57 2025 
Message ID: 69894     Entry time: Wed Sep 17 21:55:57 2025     In reply to: 69892
Icon: Reply  Author: Konstantin Olchanski  Author Email: olchansk@triumf.ca 
Category: Question  OS: Linux  ELOG Version: 3.1.5-1272bc14 
Subject: Re: [global] config still editable by admin of top group  
Another idea, if you have root access to the elog server, you can temporarily make the elog config file unwritable to the elog user, nobody will be 
able to change it from the web interface. (and as root, you can edit it using emacs). But in general case, yes, it is better to setup a separate 
elog instance for what you do. Still, make the config elog unwritable by the elog user, so it cannot be hacked too easily. K.O.
ELOG V3.1.5-3fb85fa6