From owner-freebsd-stable@FreeBSD.ORG Mon Feb 26 16:50:16 2007 Return-Path: X-Original-To: freebsd-stable@freebsd.org Delivered-To: freebsd-stable@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 9F4B416A400 for ; Mon, 26 Feb 2007 16:50:16 +0000 (UTC) (envelope-from lists@aquezada.com) Received: from aphrodite.aquezada.com (h216-235-8-211.host.egate.net [216.235.8.211]) by mx1.freebsd.org (Postfix) with ESMTP id 5F3E513C4A5 for ; Mon, 26 Feb 2007 16:50:16 +0000 (UTC) (envelope-from lists@aquezada.com) Received: from localhost (localhost [127.0.0.1]) by aphrodite.acf.aquezada.com (Postfix) with ESMTP id A28DD3F447 for ; Mon, 26 Feb 2007 11:29:31 -0500 (EST) X-Virus-Scanned: amavisd-new at aquezada.com Received: from aphrodite.acf.aquezada.com ([127.0.0.1]) by localhost (aphrodite.acf.aquezada.com [127.0.0.1]) (amavisd-new, port 10024) with LMTP id GAF6ZwUKsYsU for ; Mon, 26 Feb 2007 11:29:19 -0500 (EST) Received: by aphrodite.acf.aquezada.com (Postfix, from userid 1001) id A2B983F440; Mon, 26 Feb 2007 11:29:19 -0500 (EST) Received: from localhost (localhost [127.0.0.1]) by aphrodite.acf.aquezada.com (Postfix) with ESMTP id 71A023F438 for ; Mon, 26 Feb 2007 11:29:19 -0500 (EST) Date: Mon, 26 Feb 2007 11:29:19 -0500 (EST) From: "Julian C. Dunn" X-X-Sender: jdunn@aphrodite.acf.aquezada.com To: freebsd-stable@freebsd.org Message-ID: <20070226111603.P87234@aphrodite.acf.aquezada.com> Organization: Aquezada Productions MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed Subject: problems with portupgrade under non-root user X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 26 Feb 2007 16:50:16 -0000 I want to set up a FreeBSD system so that all portupgrades are done by a "portbld" user, which has restricted 'sudo' rights to execute only portupgrade-related commands. To that end, I did the following: $ sudo chown -R portbld:portbld /usr/ports $ sudo chown -R portbld:portbld /var/db/sup/ports-all $ cd /usr/ports && sudo -u portbld make update (cvsup runs) (add 'portbld' to sudoers with NOPASSWD: ALL for now) $ sudo -u portbld portupgrade -s dovecot Unfortunately this last step doesn't work: ruby dumps core: Making all in doc cat dovecot-config.in|sed "s|moduledir=|moduledir=/usr/local/lib/dovecot|" > dovecot-config ** Listing the failed packages (*:skipped / !:failed) ! mail/dovecot (dovecot-1.0.r22) (Permission denied) ---> Packages processed: 0 done, 0 ignored, 0 skipped and 1 failed /usr/local/sbin/portupgrade:2084: [BUG] Segmentation fault ruby 1.8.5 (2006-12-25) [i386-freebsd6] Abort trap: 6 (core dumped) Any ideas here? - Julian [ Julian C. Dunn * "You can throw confetti, ] [ WWW: www.aquezada.com/staff/julian * but you're still going ] [ PGP: 91B3 7A9D 683C 7C16 715F * through the motions, baby" ] [ 442C 6065 D533 FDC2 05B9 * - Aimee Mann ]