On Sat, Feb 21, 2015 at 03:51:13PM +0100, Andreas Färber wrote:
Am 21.02.2015 um 06:39 schrieb Andrei Borzenkov:
В Sat, 21 Feb 2015 02:41:35 +0100 Andreas Färber
пишет: The nosuid option is _not_ set on the ext4 root filesystem.
If I try to run "strace sudo echo foo", then it complains about the effective UID not being 0, both on working and non-working systems.
strace output would be interesting for a start.
"LANG=C LC_ALL=C strace sudo echo foo" output (after having entered the password once) seems to mainly differ in memory addresses afaict.
[...] access("/usr/bin/sudo", X_OK) = 0 stat64("/usr/bin/sudo", {st_mode=S_IFREG|S_ISUID|0755, st_size=124112, ...}) = 0 write(2, "sudo: effective uid is not 0, is"..., 140sudo: effective uid is not 0, is /usr/bin/sudo on a file system with the 'nosuid' option set or an NFS file system without root privileges? ) = 140 exit_group(1) = ? +++ exited with 1 +++
I assume this error is because /usr/bin/sudo is sticky, but strace somehow runs it under my user's uid 1000 rather than root's uid 0.
The diff -u between logs from two Factory systems is attached: parallella is working, arnd isn't.
If more is needed, I should probably rather open a bug - was assuming there's probably something trivial I overlooked...
If you strace setuid binaries, setuid will be inactivated by the kernel. Are there entries in other logfiles? Like /var/log/messages /var/log/audit/audit.log ? Ciao, Marcus -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org