[PVE-User] ceph.conf permissions

Albert Dengg albert at fsfe.org
Thu Mar 10 12:06:48 CET 2016


On Thu, Mar 10, 2016 at 10:49:06AM +0000, James Bailey wrote:
...
> 
> You could use extended ACLs to allow the ceph user read access to that file
> only.
> 
> https://wiki.debian.org/Permissions#Access_Control_Lists_in_Linux
have you tried it in this case?b

i'm not shure if the filesystem used for /etc/pve (pmxcfs) supports
posix acls...

as with putting the user in the www-data group:
at least on my machines the keyrings used for ceph are only readable
by root. this means that most likely, you are going to run into the
next problem there.

regards,
albert
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: not available
URL: <http://pve.proxmox.com/pipermail/pve-user/attachments/20160310/34634c32/attachment-0015.sig>


More information about the pve-user mailing list