Credentials in rasdaman installed from an RPM
|Reported by:||mase@…||Owned by:||dmisev|
Before opening up our machine to the outside world I was going to set some improved security like changing the default rasadmin passwords etc. I used the raspasswd utility and this changed the password temporarily but when restarting the rasmgr service:
- service rasmgr stop/restart/start commands don't work because the password is encoded in the /etc/init.d/rasmgr script. Therefore had to kill rasmgr process with kill command. How do we update the /etc/init.d/rasmgr script with a new password?
- When stopping rasmgr gives an error about not being able to write the authorization file /etcrasmgr.auth so it doesn't exist when restarting and the passwords are back to the default. Running raspasswd as root doesn't help (it doesn't seem to try to create the /etc/rasmgr.auth file at the time of running. I could try making /etc dir writable by non-root processes but this doesn't seem the right way to go. How should the rasadmin password be changed?
Anything else we should be aware of when updating the passwords? I notice the rasadmin password is in the default petascope settings file: does petascope really need this if we are just reading data?