RE: Realtime viewing of loadbalancer status-tools?

To:	"LinuxVirtualServer.org users mailing list." <lvs-users@xxxxxxxxxxxxxxxxxxxxxx>
Subject:	RE: Realtime viewing of loadbalancer status-tools?
From:	"Peter Norin" <peter.norin@xxxxxxxxxxxxxx>
Date:	Fri, 4 Feb 2005 12:49:02 +0100

> >While looked nice at first glare, 
> >stuff like this makes me turn away real fast..
> >
> >exec ("sudo chmod 777 /var/www/html/lbadmin/stats/route.html");
> >
> >wonder what other stuffs ya can find in there..
> >
> >  
> >
> :-0 .. Never said it was pretty, you would obviously need your head 
> examined if you let anyone access the apache admin interface on your 
> load balancer.

Yeah i agree, but that does not make it ok to create a bunch of
worldwritable/executable files all around the system.. 

as example:
    exec ("sudo /sbin/route -v >
/var/www/html/lbadmin/stats/route.html");
    exec ("sudo chmod 777 /var/www/html/lbadmin/stats/route.html");
    exec ("sudo /sbin/ipvsadm -Lcn >
/var/www/html/lbadmin/stats/connection.html");
    exec ("sudo chmod 777 /var/www/html/lbadmin/stats/connection.html");
    exec ("sudo /sbin/ipvsadm -Lc >
/var/www/html/lbadmin/stats/connection.html");
    exec ("sudo chmod 777 /var/www/html/lbadmin/stats/connection.html");
    exec ("sudo ifconfig > /var/www/html/lbadmin/stats/ifconfig.html");
    exec ("sudo chmod 777 /var/www/html/lbadmin/stats/ifconfig.html");
    exec ("sudo ipvsadm -Z");
    exec ("sudo chmod 777 /var/log/ldirectord.log");
    exec ("sudo chmod 777 /var/log/ha-log");
    exec ("sudo chmod 777 /var/log/lbadmin-log");
    exec ("sudo chmod 777 /etc/ha.d/haresources");
    exec ("sudo /sbin/ipvsadm -Ln --stats >
/var/www/html/lbadmin/stats/stats.html");
    exec ("sudo chmod 777 /var/www/html/lbadmin/stats/stats.html");
    exec ("sudo /sbin/ipvsadm -Ln --rate  >
/var/www/html/lbadmin/stats/rate.html");
    exec ("sudo chmod 777 /var/www/html/lbadmin/stats/rate.html");
    exec ("sudo /sbin/ipvsadm -Ln  >
/var/www/html/lbadmin/stats/normal.html");
    exec ("sudo chmod 777 /var/www/html/lbadmin/stats/normal.html");

and it makes as much sense as having qwe123 as root password only cause
"im the
only one with access to the server".

My point is/was, I only saw the line i posted first and thought "hell,
this guy
doesnt know what hes doin" and proceeded to remove the whole package.

Anyways, didnt mean to start a debate/flame or anything, this was all
just IMHO.

Cheers
Peter

<Prev in Thread]	Current Thread	[Next in Thread>
Realtime viewing of loadbalancer status-tools?, Todd Lyons Re: Realtime viewing of loadbalancer status-tools?, Malcolm Turnbull RE: Realtime viewing of loadbalancer status-tools?, Peter Norin Re: Realtime viewing of loadbalancer status-tools?, Malcolm Turnbull Re: Realtime viewing of loadbalancer status-tools?, Ralph Jones Re: Realtime viewing of loadbalancer status-tools?, James Couzens RE: Realtime viewing of loadbalancer status-tools?, Peter Norin <= RE: Realtime viewing of loadbalancer status-tools?, Peter Mueller

Previous by Date:	Re: Realtime viewing of loadbalancer status-tools?, Malcolm Turnbull
Next by Date:	Re: Realtime viewing of loadbalancer status-tools?, Ralph Jones
Previous by Thread:	Re: Realtime viewing of loadbalancer status-tools?, James Couzens
Next by Thread:	RE: Realtime viewing of loadbalancer status-tools?, Peter Mueller
Indexes:	[Date] [Thread] [Top] [All Lists]