[opensuse] home directory access problems, permissions???
I am haveing logon problems and believe that I may have found the problem, permissions for home directory. I have: drwxr-xr-x+ 84 pat users 8192 Aug 21 16:56 pat ^ What does the '+' (plus) indicate above and how may I clear it, if that is indeed my problem. Many of the files below /home/pat also have the 'x' in the same location. tks, -- Patrick Shanahan Registered Linux User #207535 http://wahoo.no-ip.org @ http://counter.li.org HOG # US1244711 Photo Album: http://wahoo.no-ip.org/photos --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
On Monday 21 August 2006 22:30, Patrick Shanahan wrote:
I am haveing logon problems and believe that I may have found the problem, permissions for home directory.
I have: drwxr-xr-x+ 84 pat users 8192 Aug 21 16:56 pat ^ What does the '+' (plus) indicate above and how may I clear it, if that is indeed my problem. Many of the files below /home/pat also have the 'x' in the same location.
Hi Patrick, I can't tell you off the top of my head how to fix this, but the plus sign indicates the directory has an ACL (Access Control List) associated with it. Does the reported UID (ls -n) match your real UID? Carl --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
On Mon, Aug 21, 2006 at 11:21:56PM -0400, Carl Hartung wrote:
On Monday 21 August 2006 22:30, Patrick Shanahan wrote:
I am haveing logon problems and believe that I may have found the problem, permissions for home directory.
I have: drwxr-xr-x+ 84 pat users 8192 Aug 21 16:56 pat ^ What does the '+' (plus) indicate above and how may I clear it, if that is indeed my problem. Many of the files below /home/pat also have the 'x' in the same location.
Hi Patrick,
I can't tell you off the top of my head how to fix this, but the plus sign indicates the directory has an ACL (Access Control List) associated with it.
Type "man setfacl" to find information about to set that stuff. Robert -- Robert Schiele Tel.: +49-621-181-2214 Dipl.-Wirtsch.informatiker mailto:rschiele@uni-mannheim.de "Quidquid latine dictum sit, altum sonatur."
On Monday 21 August 2006 23:48, Robert Schiele wrote:
On Mon, Aug 21, 2006 at 11:21:56PM -0400, Carl Hartung wrote:
On Monday 21 August 2006 22:30, Patrick Shanahan wrote:
I am haveing logon problems and believe that I may have found the problem, permissions for home directory.
I have: drwxr-xr-x+ 84 pat users 8192 Aug 21 16:56 pat ^ What does the '+' (plus) indicate above and how may I clear it, if that is indeed my problem. Many of the files below /home/pat also have the 'x' in the same location.
Hi Patrick,
I can't tell you off the top of my head how to fix this, but the plus sign indicates the directory has an ACL (Access Control List) associated with it.
Type "man setfacl" to find information about to set that stuff.
Thanks, Robert! I hope when Patrick figures out what's going on he'll post the solution and maybe some pointers ;-) Carl --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
On 8/22/06, Carl Hartung <suselinux@cehartung.com> wrote:
Thanks, Robert! I hope when Patrick figures out what's going on he'll post the solution and maybe some pointers ;-)
The news is not good. I have not set acl usage at all. I removed the acl successfully with: setfacl -R -b /home/pat BUT, still unable to login as anything other than root. FLASH, root does not have access to man files (???): 10:04 wahoo:~ # man setfacl execve: Permission denied 10:04 wahoo:~ # man man execve: Permission denied never seen this before. And it is the man binary, not the object file that is denied access. Locate command also give _no_ output ?? appears that I have trashed the system somehow ???? Will try anything, suggestions? Tomorrow I will reinstall if I haven't arrived at a solution. tks, -- Patrick Shanahan Registered Linux User #207535 http://wahoo.no-ip.org @ http://counter.li.org HOG # US1244711 Photo Album: http://wahoo.no-ip.org/photos --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
BUT, still unable to login as anything other than root. FLASH, root does not have access to man files (???): 10:04 wahoo:~ # man setfacl execve: Permission denied
man is executed as user 'man'. But, you may want to check permissions on every file in /bin or /usr/bin. It's not good to have system directories 0700 only (files 0600 only).
never seen this before. And it is the man binary, not the object file that is denied access. Locate command also give _no_ output ??
appears that I have trashed the system somehow ????
Will try anything, suggestions?
Tomorrow I will reinstall if I haven't arrived at a solution.
tks, -- Patrick Shanahan Registered Linux User #207535 http://wahoo.no-ip.org @ http://counter.li.org HOG # US1244711 Photo Album: http://wahoo.no-ip.org/photos --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
Jan Engelhardt -- --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
On Tuesday 22 August 2006 10:21, Jan Engelhardt wrote:
man is executed as user 'man'. But, you may want to check permissions on every file in /bin or /usr/bin. It's not good to have system directories 0700 only (files 0600 only).
Would root running /sbin/conf.d/SuSEconfig.permissions be worth a try?
Will try anything, suggestions?
Patrick, Have you compared numerical UIDs and GIDs as specified in /etc/passwd against the actual filesystem? Carl --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
On 8/22/06, Carl Hartung <suselinux@cehartung.com> wrote:
Would root running /sbin/conf.d/SuSEconfig.permissions be worth a try?
tried, no difference
Have you compared numerical UIDs and GIDs as specified in /etc/passwd against the actual filesystem?
yes, 1000/100 and appear consistant. The _only_ difference I noticed was the "+", acl, and it is cleared now and system has been rebooted. the _only_ login accepted by the system is root. tks, -- Patrick Shanahan Registered Linux User #207535 http://wahoo.no-ip.org @ http://counter.li.org HOG # US1244711 Photo Album: http://wahoo.no-ip.org/photos --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
On 8/22/06, Jan Engelhardt <jengelh@linux01.gwdg.de> wrote:
man is executed as user 'man'. But, you may want to check permissions on every file in /bin or /usr/bin. It's not good to have system directories 0700 only (files 0600 only).
10:47 wahoo:/usr/bin # ls -lan `which man` -rwsr-xr-x 2 0 0 7176 Apr 22 23:36 /usr/bin/man 10:48 wahoo:/usr/bin # ls -la `which man` -rwsr-xr-x 2 root root 7176 Apr 22 23:36 /usr/bin/man made a new user with different shell, zsh. Still same problem, cannot login: 11:00 wahoo:/home/patrick # su patrickme/patrick # su: /bin/zsh: Permission denied 11:00 wahoo:/home/patrick # users root root root root tks, -- Patrick Shanahan Registered Linux User #207535 http://wahoo.no-ip.org @ http://counter.li.org HOG # US1244711 Photo Album: http://wahoo.no-ip.org/photos --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
10:47 wahoo:/usr/bin # ls -lan `which man` -rwsr-xr-x 2 0 0 7176 Apr 22 23:36 /usr/bin/man 10:48 wahoo:/usr/bin # ls -la `which man` -rwsr-xr-x 2 root root 7176 Apr 22 23:36 /usr/bin/man
11:00 wahoo:/home/patrick # su patrickme/patrick # su: /bin/zsh: Permission denied
ls -l `which su` /bin/zsh Jan Engelhardt -- --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
On 8/22/06, Jan Engelhardt <jengelh@linux01.gwdg.de> wrote:
ls -l `which su` /bin/zsh
12:09 wahoo:~ # ls -l `which su` /bin/zsh -rwsr-xr-x 1 root root 37440 Jul 18 18:46 /bin/su -rwxr-xr-x 1 root root 1677372 Aug 9 15:03 /bin/zsh -- Patrick Shanahan Registered Linux User #207535 http://wahoo.no-ip.org @ http://counter.li.org HOG # US1244711 Photo Album: http://wahoo.no-ip.org/photos --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
On Tuesday 22 August 2006 12:11, Patrick Shanahan wrote:
On 8/22/06, Jan Engelhardt <jengelh@linux01.gwdg.de> wrote:
ls -l `which su` /bin/zsh
12:09 wahoo:~ # ls -l `which su` /bin/zsh -rwsr-xr-x 1 root root 37440 Jul 18 18:46 /bin/su -rwxr-xr-x 1 root root 1677372 Aug 9 15:03 /bin/zsh
Patrick, Have you booted to rescue and checked the consistency of the filesystem(s)? Is '/home' on it's own partition? Alternatively, have you tried running the installation system's 'Repair' facility and allowed it to run all the tests? Carl --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
On 8/22/06, Carl Hartung <suselinux@cehartung.com> wrote:
Have you booted to rescue and checked the consistency of the filesystem(s)? Is '/home' on it's own partition?
separate partitions for: /dev/sdb6 /home /dev/sdb7 /srv /dev/sdb5 / fsck.ext3 /dev/sdb6 fsck.ext3 /dev/sdb5 fsck.ext3 /dev/sdb7 no errors
Alternatively, have you tried running the installation system's 'Repair' facility and allowed it to run all the tests?
yes, ran *all* tests, no problem reported :^( ps, I'm nearly ready to reinstall (4th time, but first since July 4). Can I reinstall w/o formatting and save my home, web setup and added utilities under / ??? Is that considered an upgrade? tks, -- Patrick Shanahan Registered Linux User #207535 http://wahoo.no-ip.org @ http://counter.li.org HOG # US1244711 Photo Album: http://wahoo.no-ip.org/photos --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
On Tuesday 22 August 2006 19:18, Patrick Shanahan wrote:
On 8/22/06, Carl Hartung <suselinux@cehartung.com> wrote:
Have you booted to rescue and checked the consistency of the filesystem(s)? Is '/home' on it's own partition?
separate partitions for: /dev/sdb6 /home /dev/sdb7 /srv /dev/sdb5 /
cat /proc/mounts is anything mounted noexec, or some other strange flag? --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
On 8/22/06, Anders Johansson <andjoh@rydsbo.net> wrote:
cat /proc/mounts
is anything mounted noexec, or some other strange flag?
15:11 wahoo:~ # cat /proc/mounts rootfs / rootfs rw 0 0 udev /dev tmpfs rw 0 0 /dev/sdb5 / ext3 rw,data=ordered 0 0 proc /proc proc rw 0 0 sysfs /sys sysfs rw 0 0 debugfs /sys/kernel/debug debugfs rw 0 0 devpts /dev/pts devpts rw 0 0 /dev/hde15 /mnt/e15 ext3 rw,data=ordered 0 0 /dev/sdb6 /home ext3 rw,data=ordered 0 0 /dev/sdb7 /srv ext3 rw,data=ordered 0 0 /dev/hdb1 /mnt/b1 ext3 rw,data=ordered 0 0 /dev/hdb5 /mnt/b5 ext3 rw,data=ordered 0 0 /dev/hdb6 /mnt/b6 ext3 rw,data=ordered 0 0 /dev/hde10 /mnt/e10 ext3 rw,data=ordered 0 0 /dev/hde11 /mnt/e11 ext3 rw,data=ordered 0 0 /dev/hde12 /mnt/e12 ext3 rw,data=ordered 0 0 /dev/hde13 /mnt/e13 ext3 rw,data=ordered 0 0 /dev/hde14 /mnt/e14 ext3 rw,data=ordered 0 0 /dev/hde1 /mnt/e1_winC vfat rw,fmask=0022,dmask=0022,codepage=cp437,iocharset=iso8859-1 0 0 /dev/hde5 /mnt/e5_winD vfat rw,nosuid,nodev,noexec,gid=100,fmask=0002,dmask=0002,codepage=cp437,iocharset=iso8859-1,utf8 0 0 /dev/hde6 /mnt/e6 ext3 rw,data=ordered 0 0 /dev/hde7 /mnt/e7 ext3 rw,data=ordered 0 0 /dev/hde8 /mnt/e8 ext3 rw,data=ordered 0 0 /dev/hde9 /mnt/e9 ext3 rw,data=ordered 0 0 /dev/hdf10 /mnt/f10-photo_6 ext3 rw,data=ordered 0 0 /dev/hdf5 /mnt/f5 ext3 rw,data=ordered 0 0 /dev/hdf6 /mnt/f6-photo_2 ext3 rw,data=ordered 0 0 /dev/hdf7 /mnt/f7-photo_3 ext3 rw,data=ordered 0 0 /dev/hdf8 /mnt/f8-photo_4 ext3 rw,data=ordered 0 0 /dev/hdf9 /mnt/f9-photo_5 ext3 rw,data=ordered 0 0 /dev/hdg5 /mnt/g5 ext3 rw,data=ordered 0 0 /dev/hdg6 /mnt/g6 ext3 rw,data=ordered 0 0 /dev/hdg7 /mnt/g7 ext3 rw,data=ordered 0 0 /dev/hdg8 /mnt/g8 ext3 rw,data=ordered 0 0 /dev/sda5 /mnt/sa5 ext3 rw,data=ordered 0 0 /dev/sda6 /mnt/sa6 ext3 rw,data=ordered 0 0 /dev/sda7 /mnt/sa7 ext3 rw,data=ordered 0 0 nothing appears out of the ordinary ?? tks, -- Patrick Shanahan Registered Linux User #207535 http://wahoo.no-ip.org @ http://counter.li.org HOG # US1244711 Photo Album: http://wahoo.no-ip.org/photos --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
On Tuesday 22 August 2006 13:18, Patrick Shanahan wrote:
ps, I'm nearly ready to reinstall (4th time, but first since July 4). Can I reinstall w/o formatting and save my home, web setup and added utilities under / ??? Is that considered an upgrade?
If I were facing the same problem I'd probably reinstall to get the system running again. I'd also try hard to avoid repeating whatever my last serious mistake was. ;-) YMMV, of course... it probably *is* recoverable. Question is, how much time are you willing to invest in that process? If you have space on sdb6 (/home) to store copies of your current /etc and /srv (under ~/.etc and ~/.srv,) you can omit sdb6 and sdb7 from the installation process and install the entire system on /dev/sdb5. Don't forget to erase the contents of sdb5 by hand, first, to ensure you're starting from a 'clean slate.' You can then rename the newly created /home and /srv directories (to /.home and /.srv,) restore the relevant lines from your original fstab (backup the newly created fstab for safe-keeping) and mount the original /home and /srv dedicated partitions. You'll have to 'hunt and peck' to compare/massage /etc to match the contents of ~/.etc, as needed. However, if and when it 'blows up' again, you can always revert back to the just-installed configuration and try restoring things one at a time. Good luck! Carl --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
10:47 wahoo:/usr/bin # ls -lan `which man` -rwsr-xr-x 2 0 0 7176 Apr 22 23:36 /usr/bin/man 10:48 wahoo:/usr/bin # ls -la `which man` -rwsr-xr-x 2 root root 7176 Apr 22 23:36 /usr/bin/man
11:00 wahoo:/home/patrick # su patrickme/patrick # su: /bin/zsh: Permission denied
ls -l `which su` /bin/zsh
id patrick ls -dl /home/patrick getfacl /home/patrick Jan Engelhardt -- --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
On Tuesday 22 August 2006 16:21, Jan Engelhardt wrote:
BUT, still unable to login as anything other than root. FLASH, root does not have access to man files (???): 10:04 wahoo:~ # man setfacl execve: Permission denied
man is executed as user 'man'.
On my system, /usr/bin/man is suid root It may also be worthwhile to make sure things like SElinux or AppArmor aren't running for example, if AppArmor is running but the profiles have been corrupted, this sort of thing can easily happen --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
On 8/22/06, Anders Johansson <andjoh@rydsbo.net> wrote:
On my system, /usr/bin/man is suid root
mine is too
It may also be worthwhile to make sure things like SElinux or AppArmor aren't running
they are not. tks, -- Patrick Shanahan Registered Linux User #207535 http://wahoo.no-ip.org @ http://counter.li.org HOG # US1244711 Photo Album: http://wahoo.no-ip.org/photos --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
* Patrick Shanahan <ptilopteri@gmail.com> [08-24-06 13:16]:
On 8/22/06, Anders Johansson <andjoh@rydsbo.net> wrote:
On my system, /usr/bin/man is suid root
I want to thank everyone who jumped in and assisted my with my recent problems. Errant updates caused my problems and, perhaps, my own ignorance. After 5 days of hair-pulling, I re-installed SUSE 10.1 x86_64, with similar problems that I reported back in early July and once earlier on another install. The purchased install DVD would hang if I did not unplug my epson 2400 usb scanner and didn't recognise my epson 925 usb printer or any usb appliances attached. A kernel update to kernel-smp-2.6.18_rc4-jen32@x86_64 granted access to the usb devices, scanner and printer, but broke by ps/2 mouse. Pointer appeared on all screens, graphic and console, but would not move. Reverting to the original kernel returned mouse functionality and retained the usb devices :^). I have since updated to kernel-smp-2.6.18_rc4-1.3@x86_64, but the nvidia video did not work. Returning to nv (switch2nv) got X back. Have not explored this further, but will. I am very happy with the present working conditions of SUSE 10.1. It is the best linux distro that I have ever used. I look forward to 10.2. Again, the efforts of the list-members was and is much appreciated. Keep up the good work. thankyou, -- Patrick Shanahan Registered Linux User #207535 http://wahoo.no-ip.org @ http://counter.li.org HOG # US1244711 Photo Album: http://wahoo.no-ip.org/gallery2 --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
participants (5)
-
Anders Johansson -
Carl Hartung -
Jan Engelhardt -
Patrick Shanahan -
Robert Schiele