[Freeipa-devel] [PATCH] don't allow special groups to be removed
Simo Sorce
ssorce at redhat.com
Fri Nov 30 20:23:54 UTC 2007
On Fri, 2007-11-30 at 14:58 -0500, Karl MacMillan wrote:
> It's definitely a security issue - stripping admins of all admin
> rights
> as a regular user is definitely a problem. Perhaps the acis already
> cover that case though?
A regular can do nothing, only admins can add/delete entries.
Simo.
--
| Simo S Sorce |
| Sr.Soft.Eng. |
| Red Hat, Inc |
| New York, NY |
More information about the Freeipa-devel
mailing list