[CentOS] How to Retain Ownership on webdir
Hi, I have this webroot /webdir/ with 2775 permission so that any created file/directory by apache inside of /webdir/ will be 'users:webusers'. However, I noticed when the apache created a new files (fileB) / directories (dirB), the ownership becomes 'apache:apache' and the sgid has gone for /webdir/ (drwxrwxr-x). I'm currently using Wordpress. [before] drwxrwsr-x users webusers /webdir/ drwxrwsr-x users webusers /webdir/dirA -rw-rw-r-- users webusers /webdir/fileA [after] drwxrwxr-x users webusers /webdir/ drwxrwxr-x apache apache /webdir/dirB -rw-rw-r-- apache apache /webdir/fileB Why the sgid bit doesn't reflected and the group as well? Has anyone knows how to fix this? Thanks. Regards, James ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Open source tool like CPanel
Hi All, Any could suggest open source tool like CPanel that could do the following? -User access control *user will be able to modify specific virtual host config file. Example is /etc/httpd/conf.d/domain.com.conf *user will be able to upload files to the specific webroot (example only /var/www/vhosts/domain.com) *user will be able to access MySQL server with can do create database,upload database, etc... I tried the webmin but it can't allow to set user to do modify specific virtual host config files and upload files to the specific webroot assigned by the admin/root. Hope anyone could help me out. Thanks James ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] umask not functioning with cp command
Hi all, $ umask 0002 $ mkdir test $ ls -ld test drwxrwxr-x 2 user user 4096 Jun 23 19:04 test/ $ls -ld content drwxr-xr-x 2 user user 4096 Jun 23 19:29 content $ cp -r content test/ $ls -ld test/content drwxr-xr-x 2 user user 4096 Jun 23 19:29 content My question is, how can I make content directory permission mode to 775 if I do cp inside the test directory? Thanks. Regards, James ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Antwort: umask not functioning with cp command
Hi Andreas, I try the following command and the test/content directory is still in 755 mode. $ cp -a -dpR content/ test/ $ ls -l test/ drwxr-sr-x 2 user user 4096 Jun 23 19:28 content Regards, James On Wed, Jun 23, 2010 at 7:37 PM, Andreas Reschke andreas.resc...@behrgroup.com wrote: centos-boun...@centos.org wrote on 23.06.2010 13:31:56: James Corteciano ja...@linux-source.org Gesendet von: centos-boun...@centos.org 23.06.2010 13:32 Bitte antworten an CentOS mailing list centos@centos.org An CentOS mailing list centos@centos.org Kopie Thema [CentOS] umask not functioning with cp command Hi all, $ umask 0002 $ mkdir test $ ls -ld test drwxrwxr-x 2 user user 4096 Jun 23 19:04 test/ $ls -ld content drwxr-xr-x 2 user user 4096 Jun 23 19:29 content $ cp -r content test/ $ls -ld test/content drwxr-xr-x 2 user user 4096 Jun 23 19:29 content My question is, how can I make content directory permission mode to 775 if I do cp inside the test directory? Thanks. Regards, James ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos Hi James, in this case, you must copy with cp -p (or better -a same -dpR) to preserve all atributes. man cp Gruß Andreas Reschke BG-IM173 Unix/Linux-Administration Behr GmbH Co. KG ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] NFS - Permission Denied
Hi All, This is the settings of my NFS server (192.168.10.55) /etc/exports: /nfs/iso 192.168.10.0/255.255.255.0(rw,sync)http://192.168.10.0/255.255.255.0%28rw,sync%29 From the remote host, I mount it correctly. But when I write/create files/directory inside the mounted nfs directory (from /nfs/test), it will give me Permission Denied. [r...@remote]# mount -t nfs 192.168.10.55:/nfs/iso /nfs/test [r...@remote]# mkdir /nfs/test/testing mkdir: cannot create directory `testing': Permission denied Hope anyone could help me to fix this. Thank you. Regards, James ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] NFS - Permission Denied
Hi Boris, [r...@server]# ls -ld /nfs/iso drwxrwx--- 2 root apache 4096 Jun 18 00:46 /nfs/iso Regards, James On Fri, Jun 18, 2010 at 12:36 AM, Boris Epstein borepst...@gmail.comwrote: On Thu, Jun 17, 2010 at 12:17 PM, James Corteciano ja...@linux-source.org wrote: Hi All, This is the settings of my NFS server (192.168.10.55) /etc/exports: /nfs/iso 192.168.10.0/255.255.255.0(rw,sync)http://192.168.10.0/255.255.255.0%28rw,sync%29 From the remote host, I mount it correctly. But when I write/create files/directory inside the mounted nfs directory (from /nfs/test), it will give me Permission Denied. [r...@remote]# mount -t nfs 192.168.10.55:/nfs/iso /nfs/test [r...@remote]# mkdir /nfs/test/testing mkdir: cannot create directory `testing': Permission denied Hope anyone could help me to fix this. Thank you. Regards, James ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos James, On the server, who owns /nfs/iso? What are the permissions on that directory? Boris. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Logrotation with retention period
Hi All, How can it be done it logrotate configuration that I wanted to have the logs in six (6) month retention period? I have the following logs and directories of mysql. [hostname]# ls /var/log/mysql/ 2010.05.01/general.log 2010.05.01/error.log 2010.05.02/general.log 2010.05.02/error.log 2010.05.03/general.log 2010.05.03/error.log Is it possible that the output after doing logrotate could be like the below sample. All compressed logs will be keep until 6 months only. I know there is man page / docs in internet but I can't get the exact configuration to use. [hostname]# ls /var/log/mysql/ 2010.05.01.gz 2010.05.02.gz 2010.05.03.gz 2010.05.27/general.log 2010.05.27/report.log Thank you. Regards, James ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] How to log separate files or directories for centralizing SysLog server ?
Hi All, I have three server. server0 is centralized logging server, server1 and server2 are remote client servers. How can I properly configure the syslog in server0 to log the two servers in different separated files/directories. Example, server1 will be logged at /var/log/syslog/server1.log of server0 and /var/log/syslog/server2.log for server2 as well. Is there need of little tweaking for syslog.conf ? Thanks. James ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] How to log separate files or directories for centralizing SysLog server ?
Hi Tomas, I can't use syslog-ng because it's not included in RHEL package in DVD and company policy not to use non-rpm. I can use rsyslog and found it's the same config to syslog. Can I apply that rules in rsyslog? Thanks. James On Mon, Apr 12, 2010 at 3:57 PM, Tomas Ruprich rupr...@uikt.mendelu.czwrote: Hi James, i think much better for syslog server usage is syslog-ng. It has bit more difficult configuration for such a small network, but it brings much more functionalities. the simple ruleset for your needs could look like: source s_sys { unix-stream(/dev/log); internal(); }; source s_net { udp(); }; destination d_net { file(/var/log/network/$HOST/$YEAR.$MONTH.log owner(root) group(root) perm(0600) dir_perm(0700) create_dirs(yes)); }; log { source(s_net); destination(d_net); }; log { source(s_sys); destination(d_net); }; Hope it helps, Tomas Mon, Apr 12, 2010 ve 03:49:53PM +0800, James Corteciano napsal: Hi All, I have three server. server0 is centralized logging server, server1 and server2 are remote client servers. How can I properly configure the syslog in server0 to log the two servers in different separated files/directories. Example, server1 will be logged at /var/log/syslog/server1.log of server0 and /var/log/syslog/server2.log for server2 as well. Is there need of little tweaking for syslog.conf ? Thanks. James ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] How to log separate files or directories for centralizing SysLog server ?
Hi Tomas, It's working in rsyslog with applying the link you've given. Thanks. The only thing that I am thinking now is how to make logrotate to automatically compress those different directories/files in various hostnames logged in a certain period of time. I can copy and modify manually the /etc/logrotate.d/syslog to target those different hostname logged but is there any settings needed to work it in logrotate.conf? Thanks. James 2010/4/12 Tomas Ruprich rupr...@uikt.mendelu.cz Not that rules, but definetely it's possible with rsyslog. http://www.rsyslog.com/Article60.phtml Tomas Mon, Apr 12, 2010 ve 04:12:39PM +0800, James Corteciano napsal: Hi Tomas, I can't use syslog-ng because it's not included in RHEL package in DVD and company policy not to use non-rpm. I can use rsyslog and found it's the same config to syslog. Can I apply that rules in rsyslog? Thanks. James On Mon, Apr 12, 2010 at 3:57 PM, Tomas Ruprich rupr...@uikt.mendelu.cz wrote: Hi James, i think much better for syslog server usage is syslog-ng. It has bit more difficult configuration for such a small network, but it brings much more functionalities. the simple ruleset for your needs could look like: source s_sys { unix-stream(/dev/log); internal(); }; source s_net { udp(); }; destination d_net { file(/var/log/network/$HOST/$YEAR.$MONTH.log owner(root) group(root) perm(0600) dir_perm(0700) create_dirs(yes)); }; log { source(s_net); destination(d_net); }; log { source(s_sys); destination(d_net); }; Hope it helps, Tomas Mon, Apr 12, 2010 ve 03:49:53PM +0800, James Corteciano napsal: Hi All, I have three server. server0 is centralized logging server, server1 and server2 are remote client servers. How can I properly configure the syslog in server0 to log the two servers in different separated files/directories. Example, server1 will be logged at /var/log/syslog/server1.log of server0 and /var/log/syslog/server2.log for server2 as well. Is there need of little tweaking for syslog.conf ? Thanks. James ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- S pozdravem Tomáš Ruprich systémový administrátor Ústav pro informační systém Mendelova univerzita v Brně Zemědělská 1 / 613 00 Brno telefon 545 132 885 rupr...@uikt.mendelu.cz www.mendelu.cz [prostor pro logo] ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] SELinux restorecon does not work
Hi All, I have this following issue in SELinux. I did what instruction said but the security context has still never changed. Do I need to create local SELinux module? I hope anyone could help me out of this. Thank you. --- # sealert -b Summary: SELinux is preventing postmaster (postgresql_t) setattr to ./db (etc_t). Allowing Access: Sometimes labeling problems can cause SELinux denials. You could try to restore the default system file context for ./db, restorecon -v './db' If this does not work, there is currently no automatic way to allow this access. Instead, you can generate a local policy module to allow this access - see FAQ Or you can disable SELinux protection altogether. Disabling SELinux protection is not recommended. Please file a bug report against this package. # ls -ldZ /etc/apps/db drwx-- postgres postgres user_u:object_r:etc_tdb # restorecon -v /etc/apps/db # ls -ldZ /etc/apps/db drwx-- postgres postgres user_u:object_r:etc_tdb --- Regards, James ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Wheel and YUM!!
Hi Harry, Try to implement sudoers and add the group wheel inside from it (you can modify it from /etc/sudoers or using visudo command). In that way, all your users can use yum command. Cheers, -james On Fri, Jun 27, 2008 at 12:51 PM, Harry Sukumar [EMAIL PROTECTED] wrote: Dear All I am trying to allow a local user on the centos machine to be able to run yum What I have done is added him to the wheel group so that he can run software, basically it's his own machine if he breaks it it's his problem But even after adding him to wheel, sys and adm group he is unable to install using yum I am sure I must be missing something or I must be doing something wrong, Many Thanks Harry ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Linux Registered User #380364 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos