Coda File System

Re: Daemon

From: Jan Harkes <jaharkes_at_cs.cmu.edu>
Date: Thu, 19 Feb 2004 12:22:55 -0500
On Thu, Feb 19, 2004 at 03:04:29PM +0100, Lionix wrote:
> Master_PE wrote:
> >I have an question about coda. Im very new with coda at this moment. I 
> >want to use coda as a fileserver for my apache webserver.  But my 
> >question is how kan apache authorice to coda? 
> 
> 
> Use a cron shell script ( daily ) to clog apache....
> 
> #!/bin/sh
> cat /etc/coda/apache_passwd | su www-data -c /usr/bin/clog

I'm not sure anymore whether this is already in 6.0.3, but it should be
because that's what our webserver is running. But clog can drop the root
priviledges and setuid to the user without the help of su. I have
something like the following crontab entry on our webserver,

# refresh tokens once every 8 hours
55 */3 * * *  root  /usr/bin/clog -as www-data websrv_at_coda.cs.cmu.edu < /etc/clog/websrv

/etc/clog/* is only readable by root. clog is given the open
filedescriptor, sees the '-as' and setuid's to www-data, and
authenticates with the servers using the Coda identity
websrv_at_coda.cs.cmu.edu. The same thing is also run whenever the
init-script (re)starts the webserver.

Jan
Received on 2004-02-19 12:24:55