Highest Voted 'least-privilege' Questions

0

votes

0 answers

How to follow PoLP with a cloud run application and multiple services without tight coupling

Imagine the following situation: We have a gcp cloud run backend application running. Authentication is required and the ingress is set to "Internal + Load Balancing". Other services are accessing the application via REST. Each service has it's…

asked May 17 '23 at 17:41

Mowee

1
1

0

votes

1 answer

Best-Practice way to run a python program that needs root privliges for subset of tasks

What is the best-practice way to write a python application where the majority of the code can run as the normal, non-root user -- but where there is at least one function that requires root permissions to execute? I'm writing a python program where…

python security root least-privilege

asked Oct 02 '22 at 03:00

Michael Altfield

2,083
23
39

0

votes

0 answers

Advice on giving developers capability to run explain plans in ORACLE

I'm the DBA for a set of Oracle databases. I have developers who write PL/SQL queries and we are currently looking at tuning these queries. My developers are trying to run Explain Plans through SQL Developer to do the tuning but are hitting an error…

oracle sql-execution-plan explain least-privilege

asked Sep 09 '22 at 13:11

SeanGaff

93
11

0

votes

2 answers

I have problem with least privilege principle. incrementing a member when an object is created

I want to keep track of the number of students in my system so, My idea was to make a static datamember in the "StudentController" class called "_numOfStudents" and increment it with the Student's constructor but it didn't work so, I moved it into…

c++ oop least-privilege

asked Dec 08 '21 at 11:57

Tarek Moh

13
2

0

votes

1 answer

I want to achieve the following using permission boundary

I have a user, let's call him ADMIN, now I want to give him IAM policy to create users, and s3 read write access to specific buckets and nothing else. Now the most important part of this problem is that I want to limit this scope in such a way that…

amazon-web-services amazon-s3 amazon-iam least-privilege

asked Jun 08 '21 at 15:24

rishab ajain445

155
1
10

0

votes

1 answer

Spinnaker User Authorization and Instance Permission Restrictions

I'm trying Spinnaker to bake and deploy AMIs to AWS Auto Scaling Group. The problem is, the instance needs too many permissions. As stated in Spinnaker blog post (i.e. "In today's world, it is often seen as bad practice to give tools total access to…

amazon-web-services autoscaling spinnaker least-privilege

asked Oct 06 '17 at 02:52

Salvian Reynaldi

102
5

0

votes

2 answers

Required permissions for accessing Smartcards from Windows Service

I have a Windows service which does some stuff using a Smartcard. The certificate of the smartcard is mapped into the MY store of the local machine. Accessing the private key of the smartcard is no problem when the service runs as System, but it…

c# .net smartcard least-privilege

asked Nov 14 '10 at 09:04

Henning Krause

5,302
3
24
37

0

votes

1 answer

Just Enough Administration - Command returning 'Priviledge not held.'

I have registered a PowerShell Configuration for use but am running into some difficulties. The desire was to implement a configuration that would allow a service account to remote into a server and restart it without allowing it the ability to…

powershell least-privilege

asked Nov 08 '16 at 14:48

Grinza

21
2

0

votes

2 answers

Creating a different user for each concern of my application!

I want to create my site and in the page have it so that the forum pages will use the forum mysql user having privileges on mydb.forum_table, mydb_forum_table2. and the profile page to use the profile user having access to mydb.users and…

sql mysql database-design authorization least-privilege

asked Jul 30 '10 at 02:06

user388690

0

votes

1 answer

Principle of least privilege and the const keyword

Classes are about inheritance and composition. Is using the const keyword related to the principle of least privilege? I understand inheritance and composition and I understand them but what about principle of least privilege? Can anyone explain it…

c++ oop least-privilege

asked Dec 15 '14 at 19:01

adel

0

votes

3 answers

How to limit program runtime, memory usage and as a specific user programmatically in Linux

Is there a programmatically way to limit duration, memory usage and run as less privileged user of a Linux program execution in C/C++ or Ruby ? since system or `` can't do this. sprintf(cmd_str,"/tmp/pro-%d < /tmp/in.txt >…

c ruby cpu-usage memory-limit least-privilege

asked Feb 09 '14 at 13:11

Kokizzu

24,974
37
137
233

0

votes

2 answers

Error occurred during a cryptographic operation (In Latest version of Thinktecture Identity Server 4.5)

I am getting following Error"Error occurred during a cryptographic operation" in identity server 4.5 (latest Release) when creating SessionCookies( FederatedAuthentication.SessionAuthenticationModule.WriteSessionTokenToCookie(sessionToken)) After…

session-cookies claims-based-identity least-privilege

asked Dec 20 '12 at 09:47

user1918328

101
2
3

Questions tagged [least-privilege]