Problems with Access Lists
Richard Passman
rpassman at radime.com
Tue Feb 20 13:14:01 EST 2007
Some more info;
See full config below
Using version 3.4 this config almost works;
(Users file needs an extra entry for the cust2 entry to be valid!)
i.e.user argus can get to everything,
user cust1 can just look at the data for cust1
user cust2 can look and has the buttons for notifys, but gives a
permissions error when trying to access the notifylists
Using version Dev-20070218 subtle differences
user cust1 gets a permissions error when trying to look at its top page
'Top:Cust1"
adding a "acl_page: cust1" solves this problem, but even adding an
acl_ntfylist won't let the user see the notifys list
Same with cust2
So have I found some bugs in the acl? or have I just not got it
Thanks
Richard
p.s. I can make the server available if anyone can help
Users File
argus any Top root
staff any Top staff
cust1 any Top:Cust1 cust1
cust2 any Top:Cust2 cust2
cust3 any Top:Cust3 cust3
Config File
acl_user: user staff root
acl_staff: staff root
acl_root: root
# locations of various items on web pages
sirensong: /sound/whoopwhoop.wav
bkgimage: /img/argus.logo.gif
icon: /img/smile.gif
icon_down: /img/sad.gif
nospkr_icon: /img/nospkr.gif
style_sheet: /argus.css
chmod_control: 777
# send messages to syslog
syslog: daemon
# who should be notified when things break?
notify: mail:nobody at radime.com
# don't summarize notifications
nolotsmsgs: yes
# enable built in tcp test port
test_port: 3074
# enable built in resolver
Resolv
Group "Root" {
frequency: 60
graph: yes
Host "WAN1" {
hostname: 217.169.19.55
Service Ping
}
}
Group "Cust1" {
acl_user: cust1
frequency: 60
graph: yes
Host "WAN1" {
hostname: 81.2.98.156
Service Ping
}
}
Group "Cust2" {
acl_user: cust2
acl_staff: cust2
frequency: 60
graph: yes
Host "WAN1" {
hostname: 81.2.102.65
Service Ping
}
}
More information about the Arguslist
mailing list