Re: /var/log/btmp permission problem.

2005-04-08 Thread Bryan Kadzban 
On Fri, Apr 08, 2005 at 02:30:02PM +0100, William Zhou wrote:
 The message read as Excess permission or bad ownership on file
 /var/log/btmp.  After changing to 640, it stops complianting.
 

That's a little odd.  From openssh-4.0p1/loginrec.c:

if((fst.st_mode  (S_IRWXG | S_IRWXO)) || (fst.st_uid != 0)){
logit(Excess permission or bad ownership on file %s,
_PATH_BTMP);
goto out;
}

fst is a struct stat obtained from a stat call made on the btmp file.
st_mode is the set of permissions on the file.  S_IRWXG is the RWX mask
for group according to the chmod(2) manpage, and S_IRWXO is the RWX
mask for other.  ORing them together gives you a mask for all the
permissions given to anyone who is not the owner.

ANDing that mask with the st_mode will give you either 0044 (when the
permissions are 0644) or 0040 (when the permissions are 0640).  This
value is always nonzero, so the if check should be succeeding in both
your cases (which means that sshd should be logging errors in both your
cases).

The only time sshd will refrain from logging this message is when no
permissions are granted to anyone except the owner, and when the owner
is root.  Therefore, if we want to prevent this message from being
logged, we should be chmod 0600'ing the file, not 0640.  (We create it
as root, so the owner should already be root.)

However, depending on the usage of the btmp file, it might be argued
that the LFS book is not the correct place to make this change -- maybe
the BLFS page on sshd would be better.  I don't know if that's the case
(I rather suspect that it is not -- I don't think that allowing every
user to read all the bad login attempts is a good thing), but it is
possible.



pgpuoWl7uEMdV.pgp
Description: PGP signature
-- 
http://linuxfromscratch.org/mailman/listinfo/lfs-dev
FAQ: http://www.linuxfromscratch.org/faq/
Unsubscribe: See the above information page

From Switzerland

2005-04-08 Thread Deanne Gunter 
Since 1924 our Official Swiss Pharm. has been the most 
trusted pharm. in the world, year after year.

Unlike others, we allow you to order at your discretion, 
without any questions and with the Iron Clad Swiss Privacy 
Act assuring your order will be secure, delivered and all 
information will be kept private. 

This weeks specials are Pain-klllers,
sleep-aids(Amb/Val),  sexx-aids(Ci/Vi)

http://Deanne.b7x.net/ph/864/stagnant

Did this reach you in error
please let us know and your info will be deleted from 
our database
http://Deanne.y73.net/f.php
-- 
http://linuxfromscratch.org/mailman/listinfo/lfs-dev
FAQ: http://www.linuxfromscratch.org/faq/
Unsubscribe: See the above information page

Re: LFS 6.1-testing issues

2005-04-08 Thread Archaic 
On Fri, Apr 08, 2005 at 11:17:18PM -0500, Bruce Dubbs wrote:
 
 Sorry.  I should have specified.  I get ^? printed on the screen in 
 insert mode or in :ex mode.  No characters are erased.
 A Ctrl-h works properly as a backspace should.

I cannot reproduce this on any of the builds I've done since the middle
of March (i.e. the only ones I have around).

 showkey says the backspace keycode is 14.
 dumpkeys says keycode 14 is Delete.

Same here, so I doubt that is the problem. Perhaps vim somehow
miscompiled? I have full logs for vim if you want to compare.

-- 
Archaic

Want control, education, and security from your operating system?
Hardened Linux From Scratch
http://www.linuxfromscratch.org/hlfs

-- 
http://linuxfromscratch.org/mailman/listinfo/lfs-dev
FAQ: http://www.linuxfromscratch.org/faq/
Unsubscribe: See the above information page

Re: LFS 6.1-testing issues

2005-04-08 Thread Bruce Dubbs 
Archaic wrote:
On Fri, Apr 08, 2005 at 11:17:18PM -0500, Bruce Dubbs wrote:
Sorry.  I should have specified.  I get ^? printed on the screen in 
insert mode or in :ex mode.  No characters are erased.
A Ctrl-h works properly as a backspace should.

I cannot reproduce this on any of the builds I've done since the middle
of March (i.e. the only ones I have around).

showkey says the backspace keycode is 14.
dumpkeys says keycode 14 is Delete.

Same here, so I doubt that is the problem. Perhaps vim somehow
miscompiled? I have full logs for vim if you want to compare.
Yes, that would be good.  Please send off list.
BTW, I have fixed the symptom with an addition to /etc/vimrc with:
if term == linux
  set t_kb=^?
endif
where the ^? is really a delete character created by a ctrl-v BS-key.
I would really like to find the problem and fix it however.
  -- Bruce

--
http://linuxfromscratch.org/mailman/listinfo/lfs-dev
FAQ: http://www.linuxfromscratch.org/faq/
Unsubscribe: See the above information page