[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] Re: [Raq3] File permissions- rejected from admin

Tony wrote:
> 
> If you don't run FrontPage DO NOT INSTALL THIS UPDATE!!!!!!!!!!!
> It will recursively run down your site directories and change the
> group ownership to NOBODY. In my case this broke cgi scripts and
> other apps on 10 sites.

No, it will change files owned by user httpd to user nobody.
It will NOT recursively change ownership of directories.

This is the exact snippet of code from the update that changes
permissions on the files.

--begin--
## Modify Frontpage File Permissions
system("echo STARTING PERMISSIONING >> /var/cobalt/adm.log");
open( FND, "/usr/bin/find $sitehm  -user httpd -printf \"%p\t%U\t%G\t%m\n\"
|" )
        or die "Failed to open pipe from find: $!\n";
while( <FND> ) {
        chomp;
        # Write the permissions to adm.log ( space hog, but worth it
        # if "bad things"tm happen )
        system( "echo $_ >> /var/cobalt/adm.log" );
        
        my @info = split(/\t/, $_);
        # [0] - filename
        # [1] - current uid
        # [2] - curreng gid
        # [3] - current mode
        
        # set new ownership
        chown $newuid, $info[2], "$info[0]";
        # set back the proper permissions ( ugh!!! perl's chmod !%*$^s )
        system("chmod $info[3] \'$info[0]\'");
}
close FND;
system("echo ENDING PERMISSIONING >> /var/cobalt/adm.log");
--end--

Nowhere are ANY recursive changes done.
 
> The update is being pulled from the Cobalt site and a new patch will
> be released next week.

Really, news to me.  I would like to know the name of the person who 
told you this.  They are giving you bogus information.  I work in
the sustaining group here at Cobalt.  If this patch was going to be
pulled for ANY reason I would know about it.

If you could email me the name of the tech you spoke to off-list
I would greatly appreciate it.

Jeff

-- 
Jeff Lovell
Cobalt Networks, Inc.