| 1994 1995 1996 1997 1998 1999 2000 2001 2002 2003 2004 2005 2006 2007 2008 2009 2010 2011 2012 2013 2014 2015 <2016> 2017 2018 2019 2020 2021 2022 2023 2024 2025 | Index | 1994 1995 1996 1997 1998 1999 2000 2001 2002 2003 2004 2005 2006 2007 2008 2009 2010 2011 2012 2013 2014 2015 <2016> 2017 2018 2019 2020 2021 2022 2023 2024 2025 |
| <== Date ==> | <== Thread ==> |
|---|
| Subject: | Re: set-user-id root and EPICS 3.15 |
| From: | Maren Purves <[email protected]> |
| To: | "J. Lewis Muir" <[email protected]>, Till Straumann <[email protected]>, [email protected] |
| Date: | Fri, 29 Jan 2016 13:14:23 -1000 |
On 01/29/16 13:04, J. Lewis Muir wrote:
On 1/29/16 3:54 PM, Till Straumann wrote:- the code uses these features (RT scheduling + mlockall) *only* if you give it sufficient privilege to use them. If it has the privileges then the code assumes you want it to use them.This is perhaps the real issue: the code assumes it should use something just because it has sufficient privileges to do so. If I'm understanding things correctly, if I want to run something as root (or with certain capabilities) *without* RT, I can't do it. But a toggle for RT would allow me to do it.
Agree with Lewis that something like this should not be automatic. Imagine a user (like e.g. a system administrator) with privileges runs something that includes this and it all works fine. Then somebody else (e.g. a telescope operator) without the same privileges runs it and it doesn't. To even trouble shoot what exactly the problem is I'd have to find a non-privileged account and run it ... turning it on and off via an option would be much easier (and if it needs it we can always install it with privilege and the option). Aloha, Maren