[Spacewalk-devel] Preventing anyone from registering as a Proxy

Rob James rssjames at googlemail.com
Wed Apr 22 11:32:10 EDT 2009


Good point, but if i want to use provisioning for my clients (e.g. for
"remote command" capability) then they'll have the provisioning
entitlement anyway (i had it enabled in the activation key so it was
there anyway).

2009/4/22 Miroslav Suchý <msuchy at redhat.com>:
> Rob James wrote:
>>
>> It occured to me when doing the testing on Proxy that there doesn't
>> seem to be anything to stop anyone who has root access on a machine
>> that is registered in Spacewalk from making it into a registered Proxy
>> server. It's probably not desirable to allow anyone to do this
>> (although i don't think it exposes anything). Does that make sense?
>
> Not quite true. You still need to have provisioning entitlement. So you have
> to be root on that machine and be admin on Spacewalk.
>
> --
> Miroslav Suchy
> Red Hat Satellite Engineering
>




More information about the Spacewalk-devel mailing list