John Andersen wrote:

On 04/22/2018 08:49 PM, Ralph wrote:

...

Because you are running updatedb as root. Avoid it by running updatedb as nobody instead of root.

And I already explained AHEAD OF TIME why I wanted to do that. I get half the information I'm looking for.

Then set up your own cronjob for updates, and set the permissions accordingly yourself. -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org

On April 23, 2018 5:00:01 AM PDT, "Carlos E. R." wrote:

On 2018-04-23 05:49, Ralph wrote:

...

On Sun, 22 Apr 2018 20:18:00 -0700 John Andersen wrote:

...

Why does this happen:

...

jsa@poulsbo:~> sudo updatedb [sudo] password for jsa:

...

jsa@poulsbo:~> locate updatedb locate: can not open `/var/lib/mlocate/mlocate.db': Permission denied

...

Why does /var/lib/mlocate/mlocate.db get set as owned by root/root?

Because you are running updatedb as root. Avoid it by running updatedb as nobody instead of root.

No, that is not it. I run it as root, and I can query the results as user:

Telcontar:~ # updatedb ; ls -l /var/lib/mlocate/mlocate.db -rw-r--r-- 1 root root 154757756 Apr 23 13:45 /var/lib/mlocate/mlocate.db

Telcontar:~ #

cer@Telcontar:~> locate locate /CopiaSeguridadParcial/etc/apparmor/profiles/extras/etc.cron.daily.slocate.cron ... /var/lib/locatedb /var/lib/mlocate /var/lib/mlocate/mlocate.db /var/lib/mlocate/mlocate.db.W5MUmj /var/lib/mlocate/mlocate.db.ysGAaV cer@Telcontar:~>

/etc/sysconfig/locate:

RUN_UPDATEDB_AS="root"

Simply change the permissions of the database file so that "others" can read it. If I recall correctly, they are kept.

The configuration file is "/etc/updatedb.conf".

I don't think permissions are kept. Not in leap 15. (Because I've set them to root/users and reran updatedb.) I think this changed to operate as it does in SLES, where it makes more sense to allow only root. My point is that it had never been set to root/root in the past. -- Sent from my Android phone with K-9 Mail. Please excuse my brevity. -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org

On 04/23/2018 11:22 AM, Carlos E. R. wrote:

On 2018-04-23 18:58, John Andersen wrote:

...

On April 23, 2018 5:00:01 AM PDT, "Carlos E. R." <> wrote:

...

...

Simply change the permissions of the database file so that "others" can read it. If I recall correctly, they are kept.

The configuration file is "/etc/updatedb.conf".

I don't think permissions are kept.

Not in leap 15. (Because I've set them to root/users and reran updatedb.)

You failed to say it was about Leap 15. It may be a bug. It may be a changed feature.

Yup, my bad. Should have mentioned that.

...

I think this changed to operate as it does in SLES, where it makes more sense to allow only root.

My point is that it had never been set to root/root in the past.

mlocate is different from locate. Access permission to users in mlocate is based on which users can read the database file, simple as that. So either the permissions are kept each time the file is updated, or the configuration file changes them.

There is only a locate executable on my system. The database is named mlocate.db The package installed is mlocate. The package description says: "A new locate implementation. The m character stands for merging, because updatedb reuses the existing database to avoid re-reading most of the file system." So that sounds EXACTLY like you SUGGESTED, and I could change the permissions and expect it to stay the way I want it. However as shown below, this fails.

jsa@poulsbo:~> sudo updatedb [sudo] password for jsa: jsa@poulsbo:~> locate locate locate: can not open `/var/lib/mlocate/mlocate.db': Permission denied ... jsa@poulsbo:~> l /var/lib/mlocate/mlocate.db -rw------- 1 root root 11482794 Apr 23 12:08 /var/lib/mlocate/mlocate.db

By the way, man updatedb already shows there are provisions for allowing visibility checking, ( --require-visibility ) so there should be no reason to restrict visibility with file permissions. And I wager your 42.2 or 42.3 does not behave like this. This seems like another SLES security patch that has found its way into opensuse. -- After all is said and done, more is said than done.

On 04/23/2018 12:46 PM, Carlos E. R. wrote:

...

...

...

jsa@poulsbo:~> l /var/lib/mlocate/mlocate.db -rw------- 1 root root 11482794 Apr 23 12:08 /var/lib/mlocate/mlocate.db What happens if you manually change the permissions to, say, "-rw-r--r--" and then run updatedb again?

jsa@poulsbo:~> sudo chmod 644 /var/lib/mlocate/mlocate.db jsa@poulsbo:~> l /var/lib/mlocate/mlocate.db -rw-r--r-- 1 root root 11482767 Apr 23 13:20 /var/lib/mlocate/mlocate.db jsa@poulsbo:~> sudo updatedb jsa@poulsbo:~> locate carlos locate: can not open `/var/lib/mlocate/mlocate.db': Permission denied -- After all is said and done, more is said than done.

On 04/23/2018 12:46 PM, Carlos E. R. wrote:

What happens if you manually change the permissions to, say, "-rw-r--r--" and then run updatedb again?

Tell me Carlos, do you have a locate group, and is your personal account a member of group locate? I see in the package change log that there was a patch that deprecated the locate group, and suse forced in the group of root. -- After all is said and done, more is said than done.

On 04/23/2018 01:51 PM, Knurpht @ openSUSE wrote:

Op maandag 23 april 2018 22:45:27 CEST schreef John Andersen:

...

On 04/23/2018 12:46 PM, Carlos E. R. wrote:

...

What happens if you manually change the permissions to, say, "-rw-r--r--" and then run updatedb again?

Tell me Carlos, do you have a locate group, and is your personal account a member of group locate? I see in the package change log that there was a patch that deprecated the locate group, and suse forced in the group of root. AFAICS you're barking up the wrong tree, i.e. getting away from defaults further and further. Here's output of an updated Leap 15 install:

knurpht@linux-ojp4:~> sudo zypper in mlocate [sudo] password for root: Sorry, try again. [sudo] password for root: Loading repository data... Warning: Repository 'openSUSE-Leap-15.0-Update' appears to be outdated. Consider using a different mirror or server. Warning: Repository 'openSUSE-Leap-15.0-Update-Non-Oss' appears to be outdated. Consider using a different mirror or server. Reading installed packages... Resolving package dependencies...

The following 2 NEW packages are going to be installed: mlocate mlocate-lang

The following recommended package was automatically selected: mlocate-lang

2 new packages to install. Overall download size: 123.7 KiB. Already cached: 0 B. After the operation, additional 389.3 KiB will be used. Continue? [y/n/...? shows all options] (y): y Retrieving package mlocate-0.26-lp150.2.7.x86_64 (1/2), 68.8 KiB (143.3 KiB unpacked) Retrieving: mlocate-0.26-lp150.2.7.x86_64.rpm ........................................................................................................................................ [done] Retrieving package mlocate-lang-0.26-lp150.2.7.noarch (2/2), 54.9 KiB (246.0 KiB unpacked) Retrieving: mlocate-lang-0.26-lp150.2.7.noarch.rpm ................................................................................................................................... [done] Checking for file conflicts: ......................................................................................................................................................... [done] (1/2) Installing: mlocate-0.26-lp150.2.7.x86_64 ...................................................................................................................................... [done] Additional rpm output: Updating /etc/sysconfig/locate ...

(2/2) Installing: mlocate-lang-0.26-lp150.2.7.noarch ................................................................................................................................. [done] knurpht@linux-ojp4:~> sudo updatedb knurpht@linux-ojp4:~> locate updatedb /etc/updatedb.conf /usr/bin/updatedb /usr/share/augeas/lenses/dist/updatedb.aug /usr/share/man/man5/updatedb.conf.5.gz /usr/share/man/man8/updatedb.8.gz /usr/share/vim/vim80/ftplugin/updatedb.vim /usr/share/vim/vim80/syntax/updatedb.vim knurpht@linux-ojp4:~>

So, you must have changed something in the system that stios locate from working.

Nope, don't think so. Even forcing a reinstall and doing exactly as you did, I get different results. jsa@poulsbo:~> sudo zypper in -f mlocate mlocate-lang Loading repository data... Warning: Repository 'openSUSE-Leap-15.0-Update' appears to be outdated. Consider using a different mirror or server. Warning: Repository 'openSUSE-Leap-15.0-Update-Non-Oss' appears to be outdated. Consider using a different mirror or server. Reading installed packages... Forcing installation of 'mlocate-0.26-lp150.2.7.x86_64' from repository 'Main Repository (OSS)'. Forcing installation of 'mlocate-lang-0.26-lp150.2.7.noarch' from repository 'Main Repository (OSS)'. Resolving package dependencies... The following 2 packages are going to be reinstalled: mlocate mlocate-lang 2 packages to reinstall. Overall download size: 123.7 KiB. Already cached: 0 B. No additional space will be used or freed after the operation. Continue? [y/n/...? shows all options] (y): Retrieving package mlocate-0.26-lp150.2.7.x86_64 (1/2), 68.8 KiB (143.3 KiB unpacked) Retrieving: mlocate-0.26-lp150.2.7.x86_64.rpm .....................................................[done (758.5 KiB/s)] Retrieving package mlocate-lang-0.26-lp150.2.7.noarch (2/2), 54.9 KiB (246.0 KiB unpacked) Retrieving: mlocate-lang-0.26-lp150.2.7.noarch.rpm ..............................................................[done] Checking for file conflicts: ....................................................................................[done] (1/2) Installing: mlocate-0.26-lp150.2.7.x86_64 .................................................................[done] Additional rpm output: Updating /etc/sysconfig/locate ... (2/2) Installing: mlocate-lang-0.26-lp150.2.7.noarch ............................................................[done] jsa@poulsbo:~> sudo updatedb jsa@poulsbo:~> locate updatedb locate: can not open `/var/lib/mlocate/mlocate.db': Permission denied BUT, maybe you could check if your permissions and user:group are the same as mine: jsa@poulsbo:~> l /var/lib/mlocate/mlocate.db -rw------- 1 root root 11482794 Apr 23 14:05 /var/lib/mlocate/mlocate.db I'm denied access both by permissions and group membership. If I fix both (root:users and 640 permissions) I can access it till the next time it is run by cron. Check your /etc/cron.daily/mlocate.cron and see all the tricks its doing with permissions and ownership. -- After all is said and done, more is said than done. -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org

On 2018-04-24 00:00, Carlos E. R. wrote:

On 2018-04-23 23:16, John Andersen wrote:

...

I'm denied access both by permissions and group membership. If I fix both (root:users and 640 permissions) I can access it till the next time it is run by cron. Check your /etc/cron.daily/mlocate.cron and see all the tricks its doing with permissions and ownership.

Let's see. I only have 42.3 this instant. Can you post the 15.0 version?

Ok, I have access to the file: cer@minas-tirith:~> diff /etc/cron.daily/mlocate.cron /other//etc/cron.daily/mlocate.cron 8c59 < /usr/bin/su "${RUN_UPDATEDB_AS}" -c "/usr/bin/updatedb ${NODEVS} ${UPDATEDB_PRUNEFS} ${UPDATEDB_PRUNEPATHS}" ---

/usr/bin/su "${RUN_UPDATEDB_AS}" -c "umask 0022; /usr/bin/updatedb ${NODEVS} ${UPDATEDB_PRUNEFS} ${UPDATEDB_PRUNEPATHS}" 7

That's the culprit, they change mask now. -- Cheers / Saludos, Carlos E. R. (from 42.3 x86_64 "Malachite" (Minas Tirith))

On 2018-04-24 00:40, John Andersen wrote:

On 04/23/2018 03:08 PM, Carlos E. R. wrote:

...

cer@minas-tirith:~> diff /etc/cron.daily/mlocate.cron /other//etc/cron.daily/mlocate.cron

8c59 < /usr/bin/su "${RUN_UPDATEDB_AS}" -c "/usr/bin/updatedb ${NODEVS} ${UPDATEDB_PRUNEFS} ${UPDATEDB_PRUNEPATHS}" ---

...

/usr/bin/su "${RUN_UPDATEDB_AS}" -c "umask 0022; /usr/bin/updatedb ${NODEVS} ${UPDATEDB_PRUNEFS} ${UPDATEDB_PRUNEPATHS}" 7

That's the culprit, they change mask now.

Worse than that Carlos. They change the owner and permissions depending on HOW updatedb is run.

I think that is because of the mask that the process is already running; running the script under su, sudo, etc, maybe gets different umask. This something I'm not clear about, I never fully understood how umask works. You might add a line in the script to do: umask to print it. Then you might change the line in the script above to what it was in 42.3 to restore the old behaviour (remove the umask 022;). -- Cheers / Saludos, Carlos E. R. (from 42.3 x86_64 "Malachite" (Minas Tirith))

On 2018-04-24 00:48, John Andersen wrote:

And, also, Carlos, didn't you say your user is also a member of root? That seems really dangerous and non-standard. Why do you do that?

To be able to see the logs and some files as user. -- Cheers / Saludos, Carlos E. R. (from 42.3 x86_64 "Malachite" (Minas Tirith))

Op maandag 23 april 2018 23:16:49 CEST schreef John Andersen:

On 04/23/2018 01:51 PM, Knurpht @ openSUSE wrote:

...

Op maandag 23 april 2018 22:45:27 CEST schreef John Andersen:

...

On 04/23/2018 12:46 PM, Carlos E. R. wrote:

...

What happens if you manually change the permissions to, say, "-rw-r--r--" and then run updatedb again?

Tell me Carlos, do you have a locate group, and is your personal account a member of group locate? I see in the package change log that there was a patch that deprecated the locate group, and suse forced in the group of root.

AFAICS you're barking up the wrong tree, i.e. getting away from defaults further and further. Here's output of an updated Leap 15 install:

knurpht@linux-ojp4:~> sudo zypper in mlocate [sudo] password for root: Sorry, try again. [sudo] password for root: Loading repository data... Warning: Repository 'openSUSE-Leap-15.0-Update' appears to be outdated. Consider using a different mirror or server. Warning: Repository 'openSUSE-Leap-15.0-Update-Non-Oss' appears to be outdated. Consider using a different mirror or server. Reading installed packages... Resolving package dependencies...

The following 2 NEW packages are going to be installed: mlocate mlocate-lang

The following recommended package was automatically selected: mlocate-lang

2 new packages to install. Overall download size: 123.7 KiB. Already cached: 0 B. After the operation, additional 389.3 KiB will be used. Continue? [y/n/...? shows all options] (y): y Retrieving package mlocate-0.26-lp150.2.7.x86_64 (1/2), 68.8 KiB (143.3 KiB unpacked) Retrieving: mlocate-0.26-lp150.2.7.x86_64.rpm .......................................................................... .............................................................. [done] Retrieving package mlocate-lang-0.26-lp150.2.7.noarch (2/2), 54.9 KiB (246.0 KiB unpacked) Retrieving: mlocate-lang-0.26-lp150.2.7.noarch.rpm .......................................................................... ......................................................... [done] Checking for file conflicts: .......................................................................... .......................................................................... ..... [done] (1/2) Installing: mlocate-0.26-lp150.2.7.x86_64 .......................................................................... ............................................................ [done] Additional rpm output: Updating /etc/sysconfig/locate ...

(2/2) Installing: mlocate-lang-0.26-lp150.2.7.noarch .......................................................................... ....................................................... [done] knurpht@linux-ojp4:~> sudo updatedb knurpht@linux-ojp4:~> locate updatedb /etc/updatedb.conf /usr/bin/updatedb /usr/share/augeas/lenses/dist/updatedb.aug /usr/share/man/man5/updatedb.conf.5.gz /usr/share/man/man8/updatedb.8.gz /usr/share/vim/vim80/ftplugin/updatedb.vim /usr/share/vim/vim80/syntax/updatedb.vim knurpht@linux-ojp4:~>

So, you must have changed something in the system that stios locate from working.

Nope, don't think so.

Even forcing a reinstall and doing exactly as you did, I get different results.

jsa@poulsbo:~> sudo zypper in -f mlocate mlocate-lang Loading repository data... Warning: Repository 'openSUSE-Leap-15.0-Update' appears to be outdated. Consider using a different mirror or server. Warning: Repository 'openSUSE-Leap-15.0-Update-Non-Oss' appears to be outdated. Consider using a different mirror or server. Reading installed packages... Forcing installation of 'mlocate-0.26-lp150.2.7.x86_64' from repository 'Main Repository (OSS)'. Forcing installation of 'mlocate-lang-0.26-lp150.2.7.noarch' from repository 'Main Repository (OSS)'. Resolving package dependencies...

The following 2 packages are going to be reinstalled: mlocate mlocate-lang

2 packages to reinstall. Overall download size: 123.7 KiB. Already cached: 0 B. No additional space will be used or freed after the operation. Continue? [y/n/...? shows all options] (y): Retrieving package mlocate-0.26-lp150.2.7.x86_64 (1/2), 68.8 KiB (143.3 KiB unpacked) Retrieving: mlocate-0.26-lp150.2.7.x86_64.rpm .....................................................[done (758.5 KiB/s)] Retrieving package mlocate-lang-0.26-lp150.2.7.noarch (2/2), 54.9 KiB (246.0 KiB unpacked) Retrieving: mlocate-lang-0.26-lp150.2.7.noarch.rpm ..............................................................[done] Checking for file conflicts: ............................................................................ ........[done] (1/2) Installing: mlocate-0.26-lp150.2.7.x86_64 .................................................................[done] Additional rpm output: Updating /etc/sysconfig/locate ...

(2/2) Installing: mlocate-lang-0.26-lp150.2.7.noarch ............................................................[done] jsa@poulsbo:~> sudo updatedb jsa@poulsbo:~> locate updatedb locate: can not open `/var/lib/mlocate/mlocate.db': Permission denied

BUT, maybe you could check if your permissions and user:group are the same as mine:

jsa@poulsbo:~> l /var/lib/mlocate/mlocate.db -rw------- 1 root root 11482794 Apr 23 14:05 /var/lib/mlocate/mlocate.db Here's the culprit. These are the perms on my Leap 15:

knurpht@linux-ojp4:~> ls -ld /var/lib/mlocate/ drwxr-xr-x 2 nobody root 4096 Apr 23 23:00 /var/lib/mlocate/ -- Gertjan Lettink a.k.a. Knurpht openSUSE Board Member openSUSE Forums Team -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org

On 2018-04-23 22:45, John Andersen wrote:

On 04/23/2018 12:46 PM, Carlos E. R. wrote:

...

What happens if you manually change the permissions to, say, "-rw-r--r--" and then run updatedb again?

Tell me Carlos, do you have a locate group, and is your personal account a member of group locate? I see in the package change log that there was a patch that deprecated the locate group, and suse forced in the group of root.

My normal user belongs to "root" group. But I also tested with a different user that doesn't, and could locate just fine. There was some setting that, after having access to the database via file permissions, would allow the user to find files to which he had no permissions; ie, find files of a different user. This could be allowed or disallowed. -- Cheers / Saludos, Carlos E. R. (from 42.3 x86_64 "Malachite" at Telcontar)

* John Andersen [04-23-18 17:23]:

On 04/23/2018 01:57 PM, Carlos E. R. wrote:

...

There was some setting that, after having access to the database via file permissions, would allow the user to find files to which he had no permissions; ie, find files of a different user. This could be allowed or disallowed.

Yup, saw that, sudo updatedb --require-visibility no

But the problem is that the permissions and ownership are killing me. jsa@poulsbo:~> l /var/lib/mlocate/mlocate.db -rw------- 1 root root 11482794 Apr 23 14:05 /var/lib/mlocate/mlocate.db

And I can't figure out where this is being done.

my tw: -rw-r--r-- 1 nobody nobody 14978559 Apr 23 00:15 /var/lib/mlocate/mlocate.db don't you have a group "nobody"? -- (paka)Patrick Shanahan Plainfield, Indiana, USA @ptilopteri http://en.opensuse.org openSUSE Community Member facebook/ptilopteri Registered Linux User #207535 @ http://linuxcounter.net Photos: http://wahoo.no-ip.org/piwigo paka @ IRCnet freenode -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org

On 2018-04-24 00:23, Patrick Shanahan wrote:

* John Andersen <> [04-23-18 17:23]:

my tw: -rw-r--r-- 1 nobody nobody 14978559 Apr 23 00:15 /var/lib/mlocate/mlocate.db

don't you have a group "nobody"?

But then it doesn't list every file. -- Cheers / Saludos, Carlos E. R. (from 42.3 x86_64 "Malachite" (Minas Tirith))

On 2018-04-24 12:39, Peter Suetterlin wrote:

John Andersen wrote:

...

On 04/23/2018 11:22 AM, Carlos E. R. wrote:

...

On 2018-04-23 18:58, John Andersen wrote:

...

On April 23, 2018 5:00:01 AM PDT, "Carlos E. R." <> wrote:

...

...

Simply change the permissions of the database file so that "others" can read it. If I recall correctly, they are kept.

The configuration file is "/etc/updatedb.conf".

I don't think permissions are kept.

Not in leap 15. (Because I've set them to root/users and reran updatedb.)

That doesn't help. If you check the cronjob it explicitly sets the umask before calling updatedb, and that is what gives it correct permissions.

So either change the config file /etc/sysconfig/locate to run as root, and then wait 1 day, or run /etc/cron.daily/mlocate.cron (NOT updatedb), or run it manually but with correct umask and deactivate the cronjob....

Shouldn't the mask be admin configurable in /etc/sysconfig/locate? -- Cheers / Saludos, Carlos E. R. (from 42.3 x86_64 "Malachite" at Telcontar)

On 2018-04-24 14:08, Peter Suetterlin wrote:

Carlos E. R. wrote:

...

On 2018-04-24 12:39, Peter Suetterlin wrote:

...

That doesn't help. If you check the cronjob it explicitly sets the umask before calling updatedb, and that is what gives it correct permissions.

So either change the config file /etc/sysconfig/locate to run as root, and then wait 1 day, or run /etc/cron.daily/mlocate.cron (NOT updatedb), or run it manually but with correct umask and deactivate the cronjob....

Shouldn't the mask be admin configurable in /etc/sysconfig/locate?

Hmm, why do you think so? Then you'd also want to have the group configurable, no? So far the user choice and world-readable had been enough for me... (not that this would be a reason to refuse more options)

:)

Because it is no longer world readable. That is what this thread is about. -- Cheers / Saludos, Carlos E. R. (from 42.3 x86_64 "Malachite" at Telcontar)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Tuesday, 2018-04-24 at 13:17 +0100, Peter Suetterlin wrote:

Carlos E. R. wrote:

...

Because it is no longer world readable. That is what this thread is about.

Yuck!

Mea maxima culpa. I should read more detailed. This is *only* a 15.0 problem, yes?

Yep. There is a change in the cron script that sets a "0022" mask.

Sorry again for the noise...

No problem, so that others also understand :-) - -- Cheers, Carlos E. R. (from openSUSE 42.3 x86_64 "Malachite" at Telcontar) -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iEYEARECAAYFAlrfLGwACgkQtTMYHG2NR9VEtwCfdDPLgDMFdS0n05NX2hou1WMK 3MoAnRvftf/mos5ffQdjy/vO5JMSnMGW =nx1N -----END PGP SIGNATURE----- -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Content-ID: On Tuesday, 2018-04-24 at 20:08 +0300, Andrei Borzenkov wrote:

24.04.2018 16:09, Carlos E. R. пишет:

...

On Tuesday, 2018-04-24 at 13:17 +0100, Peter Suetterlin wrote:

...

Carlos E. R. wrote:

...

Because it is no longer world readable. That is what this thread is about.

...

Yuck!

...

Mea maxima culpa. I should read more detailed. This is *only* a 15.0 problem, yes?

Yep. There is a change in the cron script that sets a "0022" mask.

How is clearing of writable bit related to not being world readable?

How umask works is something I never fully understood, I said so some messages back O:-) I'm now doing tests on a new Leap 15.0 system. On the first run it worked as user and the permissions are correct: carlos@linux-phe7:~> l /var/lib/mlocate/mlocate.db - -rw-r--r-- 1 nobody nobody 3135142 Apr 24 19:30 /var/lib/mlocate/mlocate.db carlos@linux-phe7:~> Then I run "updatedb" as root, and the permissions were: carlos@linux-phe7:~> l /var/lib/mlocate/mlocate.db - -rw-r--r-- 1 root root 3142610 Apr 24 20:10 /var/lib/mlocate/mlocate.db carlos@linux-phe7:~> Then I changed the preferences to run as root, and moved the cronjob to "hourly" instead of "daily" to get an answer soon. [...] carlos@linux-phe7:~> l /var/lib/mlocate/mlocate.db - -rw-r--r-- 1 root root 3142610 Apr 24 20:15 /var/lib/mlocate/mlocate.db carlos@linux-phe7:~> l /var/lib/mlocate/mlocate.db - -rw-r--r-- 1 root root 3142632 Apr 24 22:15 /var/lib/mlocate/mlocate.db carlos@linux-phe7:~> Well, I can not replicate the OP problem. :-? - -- Cheers, Carlos E. R. (from openSUSE 42.3 x86_64 "Malachite" at Telcontar) -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iEYEARECAAYFAlrflMoACgkQtTMYHG2NR9Xu0gCeLepRNc8RW++lm/o9nLQZxRwL Un0AnAuGhz1gFuXLrzheMXQdBTWwt5mF =owzu -----END PGP SIGNATURE-----

Op woensdag 25 april 2018 00:04:53 CEST schreef John Andersen:
> On 04/24/2018 01:34 PM, Carlos E. R. wrote:
> > Well, I can not replicate the OP problem.
> 
> Because you are not running Leap 15 perhaps?
Carlos IIRC tested this on Leap 15 in a VM. Well I tested this on:
- a fresh Leap 15 install ( build 213.1 ) in a VM
- an upgraded/updated Leap 15 in a VM
- an install on my laptop
and none of them resulted in anything else as already posted. IMNSHO this 
leaves no other options than manual interference with system defaults. Aside 
from this I have not seen anybody on this list confirm your issues. 

-- 
Gertjan Lettink a.k.a. Knurpht
openSUSE Board Member
openSUSE Forums Team



-- 
To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org
To contact the owner, e-mail: opensuse+owner@opensuse.org

John Andersen wrote:

On 04/24/2018 01:34 PM, Carlos E. R. wrote:

...

Well, I can not replicate the OP problem.

Because you are not running Leap 15 perhaps?

He clearly told he does in his mail. Have you somewhere changed your umask (or shell) for root? What does 'su root bash -c umask' give? -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org