From owner-freebsd-questions@FreeBSD.ORG Tue Nov 1 17:05:02 2005 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6F06A16A41F for ; Tue, 1 Nov 2005 17:05:02 +0000 (GMT) (envelope-from rsmith@xs4all.nl) Received: from smtp-vbr1.xs4all.nl (smtp-vbr1.xs4all.nl [194.109.24.21]) by mx1.FreeBSD.org (Postfix) with ESMTP id B4B3743D48 for ; Tue, 1 Nov 2005 17:05:01 +0000 (GMT) (envelope-from rsmith@xs4all.nl) Received: from slackbox.xs4all.nl (slackbox.xs4all.nl [213.84.242.160]) by smtp-vbr1.xs4all.nl (8.13.3/8.13.3) with ESMTP id jA1H4rBp033620; Tue, 1 Nov 2005 18:04:53 +0100 (CET) (envelope-from rsmith@xs4all.nl) Received: by slackbox.xs4all.nl (Postfix, from userid 1001) id 34DC5B822; Tue, 1 Nov 2005 18:04:53 +0100 (CET) Date: Tue, 1 Nov 2005 18:04:53 +0100 From: Roland Smith To: Giorgos Keramidas Message-ID: <20051101170453.GA1889@slackbox.xs4all.nl> Mail-Followup-To: Giorgos Keramidas , Cerion Armour-Brown , freebsd-questions@freebsd.org References: <20051101105745.M78709@terpsichore.ws> <20051101124144.GA1568@flame.pc> <20051101125015.M15158@terpsichore.ws> <20051101125617.GA2318@flame.pc> <20051101131654.M27340@terpsichore.ws> <20051101132557.GA2732@flame.pc> <20051101133234.M61656@terpsichore.ws> <20051101134047.GA2897@flame.pc> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="W/nzBZO5zC0uMSeA" Content-Disposition: inline In-Reply-To: <20051101134047.GA2897@flame.pc> User-Agent: Mutt/1.4.2.1i X-GPG-Fingerprint: 1A2B 477F 9970 BA3C 2914 B7CE 1277 EFB0 C321 A725 X-GPG-Key: http://www.xs4all.nl/~rsmith/pubkey.txt X-GPG-Notice: If this message is not signed, don't assume I sent it! X-Virus-Scanned: by XS4ALL Virus Scanner Cc: Cerion Armour-Brown , freebsd-questions@freebsd.org Subject: Re: running subversion as non-root X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 01 Nov 2005 17:05:02 -0000 --W/nzBZO5zC0uMSeA Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Tue, Nov 01, 2005 at 03:40:47PM +0200, Giorgos Keramidas wrote: > On 2005-11-01 08:32, Cerion Armour-Brown wrote: > >On Tue, 1 Nov 2005 15:25:57 +0200, Giorgos Keramidas wrote > >> If you used the standard Ports stuff to install these and they > >> have these broken permissions, it may be a side-effect of a > >> broken umask setting for the root user. > >> > >> What do you see if you log in as 'root' and issue: > >> > >> # umask > >> > >> Is this 0022 or something similar, or not? If not, what value > >> does it print? > > > > ahh, that's interesting: mine is 0027 >=20 > Ugh! That's a bit Evil(TM). It means all the files root creates get > their 'other' permissions zeroed out unconditionally, so this explains > why your libraries can only be used by people in the 'wheel' group. >=20 > > I guess I should set that to 0022, and reinstall everything... (groan) >=20 > Very likely. Sorry for the bad news :-/ You could also have find search for files with bad permissions, and correct them with chmod. something like find /usr/local/lib -type f -perm 750 -name "*.so*|xargs chmod 755 (try the find part separately first) Something analogous can be done to bad binaries in /usr/local/bin. Roland --=20 R.F.Smith (http://www.xs4all.nl/~rsmith/) Please send e-mail as plain text. public key: http://www.xs4all.nl/~rsmith/pubkey.txt --W/nzBZO5zC0uMSeA Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (FreeBSD) iD8DBQFDZ6A1EnfvsMMhpyURAuWrAJ9BbyepHGKK1iiibpgCBy9n/qXW+gCfT7vP clXbzF+Zh9afaER7h4aTn1w= =lGbP -----END PGP SIGNATURE----- --W/nzBZO5zC0uMSeA--