<div dir="ltr">Hi Dan,<div><br></div><div>Still the same....VM can spoof the ip address...attached is the VM domain xml file....</div></div><div class="gmail_extra"><br><br><div class="gmail_quote">On Thu, Jun 26, 2014 at 5:30 PM, Punit Dambiwal <span dir="ltr"><<a href="mailto:hypunit@gmail.com" target="_blank">hypunit@gmail.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr"><div><div>Hi Sven,<br><br></div>I already give the sudo user permission to VDSM user...<br><br></div>Yes..after VDSM restart i can see this hook in host tab....I will test it again and udpate you guys if still not solve....<br>
</div><div class="HOEnZb"><div class="h5"><div class="gmail_extra"><br><br><div class="gmail_quote">On Thu, Jun 26, 2014 at 4:03 PM, Antoni Segura Puimedon <span dir="ltr"><<a href="mailto:asegurap@redhat.com" target="_blank">asegurap@redhat.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div><br>
<br>
----- Original Message -----<br>
> From: "Sven Kieske" <<a href="mailto:S.Kieske@mittwald.de" target="_blank">S.Kieske@mittwald.de</a>><br>
> To: <a href="mailto:users@ovirt.org" target="_blank">users@ovirt.org</a><br>
> Sent: Thursday, June 26, 2014 9:12:31 AM<br>
> Subject: Re: [ovirt-users] Ip spoofing<br>
><br>
> Well this is strange, and this should not be the reason<br>
> but can you attach a ".py" ending to the file names (maybe vdsm performs<br>
> some strange checks)?<br>
<br>
</div>We do not ;-)<br>
<div><br>
> your permissions look good.<br>
> the only other thing I can think of are selinux<br>
> restrictions, can you check them with:<br>
> #this gives you the actual used selinux security level:<br>
> getenforce<br>
<br>
</div>That could be it<br>
<div><div><br>
> :this gives you the selinux attributes for the folder:<br>
> ls -lZ /usr/libexec/vdsm/hooks/before_device_create<br>
><br>
> I first thought it might be related to vdsms sudoers<br>
> rights but a plain python script should be executed<br>
> without modification to the sudoers config.<br>
><br>
> HTH<br>
><br>
> Am <a href="tel:26.06.2014%2006" value="+12606201406" target="_blank">26.06.2014 06</a>:22, schrieb Punit Dambiwal:<br>
> > Hi Dan,<br>
> ><br>
> > The permission looks ok...<br>
> ><br>
> ><br>
> > [root@gfs1 ~]# su - vdsm -s<br>
> > /bin/bash<br>
> > -bash-4.1$ ls -l /usr/libexec/vdsm/hooks/before_device_create<br>
> > total 8<br>
> > -rwxr-xr-x. 1 root root 1702 Jun 10 05:25 50_macspoof<br>
> > -rwxr-xr-x. 1 root root 2490 Jun 23 17:47 50_noipspoof<br>
> > -bash-4.1$ exit<br>
> > logout<br>
> > [root@gfs1 ~]#<br>
> ><br>
> > But the strange thing is noipspoof hook not display in the host hooks<br>
> > windows....<br>
><br>
> --<br>
> Mit freundlichen Grüßen / Regards<br>
><br>
> Sven Kieske<br>
><br>
> Systemadministrator<br>
> Mittwald CM Service GmbH & Co. KG<br>
> Königsberger Straße 6<br>
> 32339 Espelkamp<br>
> T: <a href="tel:%2B49-5772-293-100" value="+495772293100" target="_blank">+49-5772-293-100</a><br>
> F: <a href="tel:%2B49-5772-293-333" value="+495772293333" target="_blank">+49-5772-293-333</a><br>
> <a href="https://www.mittwald.de" target="_blank">https://www.mittwald.de</a><br>
> Geschäftsführer: Robert Meyer<br>
> St.Nr.: 331/5721/1033, USt-IdNr.: DE814773217, HRA 6640, AG Bad Oeynhausen<br>
> Komplementärin: Robert Meyer Verwaltungs GmbH, HRB 13260, AG Bad Oeynhausen<br>
> _______________________________________________<br>
> Users mailing list<br>
> <a href="mailto:Users@ovirt.org" target="_blank">Users@ovirt.org</a><br>
> <a href="http://lists.ovirt.org/mailman/listinfo/users" target="_blank">http://lists.ovirt.org/mailman/listinfo/users</a><br>
><br>
_______________________________________________<br>
Users mailing list<br>
<a href="mailto:Users@ovirt.org" target="_blank">Users@ovirt.org</a><br>
<a href="http://lists.ovirt.org/mailman/listinfo/users" target="_blank">http://lists.ovirt.org/mailman/listinfo/users</a><br>
</div></div></blockquote></div><br></div>
</div></div></blockquote></div><br></div>