[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Datastream #IZJ-689237]: Additional Datafeeds
- Subject: [Datastream #IZJ-689237]: Additional Datafeeds
- Date: Tue, 14 Oct 2008 15:11:37 -0600
Hi Jeff,
re:
> Here's a copy of ls -alt and ps -eaf
> Syslog is running.
Thanks.
Since 'syslogd' is running, there should be a /var/run/syslogd.pid file
that contains its process ID (pid). 'hupsyslog' reads that file to get the
process ID so it can send a HUP signal that tells 'syslogd' to close all open
file descriptors; reread its configuration file (/etc/syslog.conf); and then
open the various files it is configured to write to. This mechanism is what
allows LDM log files to be "rotated" (ldmd.log.2 -> ldmd.log.3; ldmd.log.1 ->
ldmd.log.2;
ldmd.log -> ldmd.log.1; etc.). In order for 'hupsyslog' to send 'syslogd' a
HUP signal, it needs 'root' privilege. Your long listing of the ~ldm/bin
directory
shows that neither 'hupsyslog' nor 'rpc.ldmd' has setid root privilege:
-rwxrwxr-x 1 ldm mcdata 117826 Oct 14 17:39 bin/feedme
-rwxrwxr-x 1 ldm mcdata 26604 Oct 14 17:39 bin/ldmadmin
-rwxrwxr-x 1 ldm mcdata 23611 Oct 14 17:39 bin/ldmcheck
-rwxrwxr-x 1 ldm mcdata 7533 Oct 14 17:39 bin/ldmfail
-rwxrwxr-x 1 ldm mcdata 115758 Oct 14 17:39 bin/ldmping
-rwxrwxr-x 1 ldm mcdata 86832 Oct 14 17:39 bin/ldmsend
-rwxrwxr-x 1 ldm mcdata 9002 Oct 14 17:39 bin/netcheck
-rwxrwxr-x 1 ldm mcdata 117584 Oct 14 17:39 bin/notifyme
-rwxrwxr-x 1 ldm mcdata 134335 Oct 14 17:39 bin/pqact
-rwxrwxr-x 1 ldm mcdata 121598 Oct 14 17:39 bin/pqsurf
-rwxrwxr-x 1 ldm mcdata 8661 Oct 14 17:39 bin/regex
-rwxrwxr-x 1 ldm mcdata 244370 Oct 14 17:39 bin/rpc.ldmd <- NB: no
setuid root bit is set
-rwxrwxr-x 1 ldm mcdata 139510 Oct 14 17:39 bin/rtstats
-rwxrwxr-x 1 ldm mcdata 4208 Oct 14 17:39 bin/scour
-rwxr-xr-x 1 ldm mcdata 2158 Oct 14 17:39 bin/scriptconfig
-rwxrwxr-x 1 ldm mcdata 7389 Oct 14 17:39 bin/syscheck
lrwxrwxrwx 1 ldm mcdata 5 Oct 14 17:39 bin/afos -> pqing
lrwxrwxrwx 1 ldm mcdata 5 Oct 14 17:39 bin/ddplus -> pqing
lrwxrwxrwx 1 ldm mcdata 5 Oct 14 17:39 bin/dds -> pqing
lrwxrwxrwx 1 ldm mcdata 5 Oct 14 17:39 bin/feedtest -> pqing
lrwxrwxrwx 1 ldm mcdata 5 Oct 14 17:39 bin/hds -> pqing
lrwxrwxrwx 1 ldm mcdata 5 Oct 14 17:39 bin/hrs -> pqing
lrwxrwxrwx 1 ldm mcdata 5 Oct 14 17:39 bin/ids -> pqing
lrwxrwxrwx 1 ldm mcdata 5 Oct 14 17:39 bin/pps -> pqing
-rwxrwxr-x 1 ldm mcdata 102490 Oct 14 17:39 bin/pqcat
-rwxrwxr-x 1 ldm mcdata 94222 Oct 14 17:39 bin/pqcheck
-rwxrwxr-x 1 ldm mcdata 93427 Oct 14 17:39 bin/pqcreate
-rwxrwxr-x 1 ldm mcdata 97732 Oct 14 17:39 bin/pqexpire
-rwxrwxr-x 1 ldm mcdata 144891 Oct 14 17:39 bin/pqing
-rwxrwxr-x 1 ldm mcdata 107965 Oct 14 17:39 bin/pqinsert
-rwxrwxr-x 1 ldm mcdata 97659 Oct 14 17:39 bin/pqmon
-rwxrwxr-x 1 ldm mcdata 160117 Oct 14 17:39 bin/pqsend
-rwxrwxr-x 1 ldm mcdata 123572 Oct 14 17:39 bin/pqutil
-rwxrwxr-x 1 ldm mcdata 7731 Oct 14 17:39 bin/hupsyslog <- NB: no
setuid root bit is set
-rwxr-xr-x 1 ldm mcdata 910 Oct 14 17:39 bin/newlog
And yet, you note that you did run the 'make install_setuid' as 'root' after
the 'make install' step of the LDM 6.7.0 installation:
"I did the install_setuids, but I had to change from ldm to myself to do sudo -
I
don't have the actual root account password. Does that affect it?"
The only instance that I know of where the setuid bit will not get set even
when 'root' runs the 'make install_setuids' is when the HOME directory of the
LDM is on an NFS-mounted file system.
Question:
- is the ~ldm/bin directory on a local or NFS-mounted file system
Alternatively, try the following:
<as yourself because you have sudo privilege>
sudo su - <- become 'root'
cd ~ldm/ldm-6.7.0/src
make install_setuids
<as 'ldm'>
cd ~ldm
ls -alt bin/hupsyslog bin/rpc.ldmd
This listing should look something like:
/local/ldm% ls -alt bin/hupsyslog bin/rpc.ldmd
-rwsr-xr-x 1 root ustaff 244257 2008-10-10 10:31 bin/rpc.ldmd*
-rwsr-xr-x 1 root ustaff 7693 2008-10-10 10:31 bin/hupsyslog*
Note that the 's' bit is set for both of these programs.
By the way, in all of the above and my comments in previous emails I have
assumed
that your 'syslogd' configuration file has been setup correctly for LDM logging.
I assumed this because you sent a ~ldm/logs/ldmd.log file in a previous email.
Questions just to make sure we are both on the same page:
- did you setup /etc/syslog.conf for LDM logging? This would have had to been
done by 'root'
- is there a /var/run/syslogd.pid file? If yes, what are its read/write
permissions?
Cheers,
Tom
--
****************************************************************************
Unidata User Support UCAR Unidata Program
(303) 497-8642 P.O. Box 3000
address@hidden Boulder, CO 80307
----------------------------------------------------------------------------
Unidata HomePage http://www.unidata.ucar.edu
****************************************************************************
Ticket Details
===================
Ticket ID: IZJ-689237
Department: Support Datastream
Priority: Normal
Status: Closed