| ID |
Date |
Icon |
Author |
Author Email |
Category |
OS |
ELOG Version |
Subject |
|
66333
|
Wed Apr 29 07:52:57 2009 |
 | Stefan Ritt | stefan.ritt@psi.ch | Question | Linux | 2.7.6 | Re: elogd runs by a user but not by root |
| Dongwook Jang wrote: |
|
Hi,
I really don't understand why elogd cannot run by root but it runs by a user.
I've put elog deamon in /etc/init.d. So it didn't bring up, but it runs if I run it by user interactively.
Thanks,
Dongwook
|
That's a security issue. If elogd runs under a user and gets hacked, the hacker obtains just the user rights, which can be limited. If it runs under root, the hacker will automatically get root rights, which is bad. Technically, there is no reason why elogd cannot be run as root. Just put
Usr = root
Grp = root
into elogd.cfg. |
|
66334
|
Wed Apr 29 12:28:13 2009 |
 | mike cianci | mike2.cianci@comcast.net | Question | Windows | 2.7.5-2185 | Database Like - ELOG Format | Stefan,
I am using the Database Like - ELOG format and on the list page, the the last two columns (on the right side) are, "Text" and "Attachments (the paperclip)".
Both of which I have deleted from the input page.
Is there anyway to remove them from the List page?
Thanks, Mike |
|
66335
|
Wed Apr 29 18:20:38 2009 |
| Dongwook Jang | dwjang@fnal.gov | Question | Linux | 2.7.6 | Re: elogd runs by a user but not by root |
| Stefan Ritt wrote: |
|
| Dongwook Jang wrote: |
|
Hi,
I really don't understand why elogd cannot run by root but it runs by a user.
I've put elog deamon in /etc/init.d. So it didn't bring up, but it runs if I run it by user interactively.
Thanks,
Dongwook
|
That's a security issue. If elogd runs under a user and gets hacked, the hacker obtains just the user rights, which can be limited. If it runs under root, the hacker will automatically get root rights, which is bad. Technically, there is no reason why elogd cannot be run as root. Just put
Usr = root
Grp = root
into elogd.cfg.
|
Hi,
I wonder how others manage this situation because deamons in /etc/init.d is excercuted by root. So I cannot run in /etc/init.d/elogd when the system starts up.
What do you think?
Thanks,
Dongwook |
|
66336
|
Thu Apr 30 08:40:43 2009 |
| Stefan Ritt | stefan.ritt@psi.ch | Question | Linux | 2.7.6 | Re: elogd runs by a user but not by root |
| Dongwook Jang wrote: |
|
Hi,
I wonder how others manage this situation because deamons in /etc/init.d is excercuted by root. So I cannot run in /etc/init.d/elogd when the system starts up.
What do you think?
Thanks,
Dongwook
|
The normal situation is that elogd gets started by root under /etc/init.d/, then the configuration file contains "Usr = elog" and "Grp = elog", so after it has been started as root, the program falls back to the "elog" user, which only has restricted rights.
|
|
66337
|
Thu Apr 30 08:48:01 2009 |
| Stefan Ritt | stefan.ritt@psi.ch | Question | Windows | 2.7.5-2185 | Re: Database Like - ELOG Format |
| mike cianci wrote: |
|
Stefan,
I am using the Database Like - ELOG format and on the list page, the the last two columns (on the right side) are, "Text" and "Attachments (the paperclip)".
Both of which I have deleted from the input page.
Is there anyway to remove them from the List page?
Thanks, Mike
|
You need:
Show text = 0
Enable Attachments = 0
to supress the text entry box and the attachment field.
Display search = ID, Type, Location, Status
to show only the attributs of interest in the list display (your attributes could be different)
Summary lines = 0
to supress the text in the list display. At the moment, this still shows the paperclip colum, but I want to fix this in the next version.
|
|
66338
|
Thu Apr 30 20:49:03 2009 |
| Dongwook Jang | dwjang@fnal.gov | Question | Linux | 2.7.6 | Re: elogd runs by a user but not by root |
| Stefan Ritt wrote: |
| Dongwook Jang wrote: |
|
Hi,
I wonder how others manage this situation because deamons in /etc/init.d is excercuted by root. So I cannot run in /etc/init.d/elogd when the system starts up.
What do you think?
Thanks,
Dongwook
|
The normal situation is that elogd gets started by root under /etc/init.d/, then the configuration file contains "Usr = elog" and "Grp = elog", so after it has been started as root, the program falls back to the "elog" user, which only has restricted rights.
|
Now I realized that it is not a problem in /etc/init.d, but deamon itself.
When I run the following command as a root, it didn't run
/mnt/wd500/jnj/products/elog/sbin/elogd -D -c /mnt/wd500/jnj/products/elog/elog/elogd.cfg
But, it runs when I did as a user.
I really don't understand this strange behavior.
Thanks, |
|
66339
|
Fri May 1 08:05:42 2009 |
| mike cianci | mike2.cianci@comcast.net | Question | Windows | 2.7.5-2185 | Problem Naming Logbooks | I have a logbook named "Centaur" (instrument name) for a problem log on an instrument and a logbook named "CentaurNewLot" for
a logbook (Database Like - ELOG format) where we would log reagent lot number changes for that instrument.
The problem is that when I name the logbooks, like I have, it screws up the formatting (List page) of the second log book.
If I rename the second logbook something totally unrelated to the first logbook my originally intended formatting returns. |
|
66340
|
Fri May 1 14:01:44 2009 |
| David Pilgram | David.Pilgram@epost.org.uk | Question | Linux | 2.7.6-2191 | Moving entry (and replies) from one log book to another | Hi Stefan,
When Moving entry (and replies) from one log book to another, is it possible to prevent elog from renumbering
the entries' ID number(s) ($@MID@$). While it may not be good practice, we've referred to these numbers in
cross-referencing, and it all goes wrong when an entry is moved from an "Open" thread to a "Closed" thread (cf
your FAQ about marking of whole threads).
In the cases I'm thinking about, i.e. from main logbook to archive logbook(s), there would never be a clash of
ID number.
Thanks,
David Pilgram. |
|