jimzah/openafs
1
0
Fork 0
mirror of https://git.openafs.org/openafs.git synced 2025-01-31 05:27:44 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

bozo: Log a warning if the bosserver is not started in restricted mode

Browse Source 
Log a warning to the BosLog when the bosserver is not started in
restricted mode to encourage admins to enable restricted mode.

Also, log a notice when restricted mode is enabled to reassure admins
restricted mode is enabled on start up.

Reviewed-on: https://gerrit.openafs.org/14762
Reviewed-by: Stephan Wiesand <stephan.wiesand@desy.de>
Reviewed-by: Benjamin Kaduk <kaduk@mit.edu>
Tested-by: BuildBot <buildbot@rampaginggeek.com>
(cherry picked from commit d91b92e308dc2ac2e489581839c1fc1bf9147e16)

Change-Id: Id35b089855797541bbc2f59982b3da7b4fab824e
Reviewed-on: https://gerrit.openafs.org/15537
Reviewed-by: Michael Meffie <mmeffie@sinenomine.net>
Tested-by: BuildBot <buildbot@rampaginggeek.com>
Reviewed-by: Marcio Brito Barbosa <mbarbosa@sinenomine.net>
Reviewed-by: Stephan Wiesand <stephan.wiesand@desy.de>
This commit is contained in:
Michael Meffie 2021-08-19 11:47:04 -04:00 committed by Stephan Wiesand
parent 92ba67d5a6
commit 883a1a27e6
1 changed files with 9 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
src/bozo/bosserver.c
View File

@ -1159,6 +1159,15 @@ main(int argc, char **argv, char **envp)
exit(code);
}
if (bozo_isrestricted) {
bozo_Log("NOTICE: bosserver is running in restricted mode.\n");
} else {
bozo_Log("WARNING: bosserver is not running in restricted mode.\n");
bozo_Log("WARNING: Superusers have unrestricted access to this host via bos.\n");
bozo_Log("WARNING: Use 'bos setrestricted' or restart with the -restricted option\n");
bozo_Log("WARNING: to enable restricted mode.\n");
}
if (rxBind) {
host = GetRxBindAddress();
}