The recommended permissions for the vcl user on the backend are correct (SELECT, INSERT, UPDATE, DELETE). Also it's probably not good to have anything remotely accessing your database with All Privileges - just from a security perspective. At some-point in the future we would like to moved to stored procedures - which would allow stricter permissions.

Are the database and vcld running on the same machine? maybe the 'username'@'localhost' is creating a problem.


Aaron


--On April 6, 2009 12:21:30 PM -0400 Brian Bouterse <bmbou...@ncsu.edu> wrote:

I am doing a fresh installation and starting with a database built from
the most recent vcl.sql from the SVN.  I've configured my frontend and
management node, according to these instructions:
https://svn.apache.org/repos/asf/incubator/vcl/trunk/INSTALLATION

I've added my management node to the DB, but I couldn't get the vcld
process to start cleanly without the following complaint from the log:

--------------------SNIP-----------------------------
| 2615| ---- WARNING ----
| 2615| 2009-04-06
| 12:17:50|2615|utils.pm:get_management_node_info(7206)|zero rows were
| returned from database select statement:

| 2615|    SELECT
| 2615|    managementnode.*,
| 2615|    predictivemodule.name AS predictive_name,
| 2615|    predictivemodule.prettyname AS predictive_prettyname,
| 2615|    predictivemodule.description AS predictive_description,
| 2615|    predictivemodule.perlpackage  AS predictive_perlpackage,
| 2615|  state.name AS statename
| 2615|    FROM
| 2615|    managementnode,
| 2615|    module predictivemodule,
| 2615|  state
| 2615|    WHERE
| 2615|    managementnode.predictivemoduleid = predictivemodule.id
| 2615|  AND managementnode.stateid = state.id
| 2615|    AND
| 2615|    managementnode.hostname like 'dhcp15.cnl.ncsu.edu%'
| 2615| ( 0) utils.pm, notify (line: 691)
| 2615| (-1) utils.pm, get_management_node_info (line: 7206)
| 2615| (-2) vcld, main (line: 127)

/usr/lib/sendmail: option requires an argument -- f
2009-04-06 12:17:50|2615|utils.pm:mail(1301)|SUCCESS -- Sending mail To:
, PROBLEM -- vcld

| 2615| ---- CRITICAL ----
| 2615| 2009-04-06 12:17:50|2615|vcld:main(131)|unable to retrieve
| management node information from database 2615| ( 0) utils.pm, notify
| (line: 691)
| 2615| (-1) vcld, main (line: 131)
--------------------SNIP-----------------------------

I believe this is default user permissions bug because when I give my vcl
user in the database full permissions (All Privileges) instead of the
recommended in the instructions (SELECT, INSERT, UPDATE, DELETE), it
works.  What are the right permissions for a frontend user?  What are the
right permissions for a backend user?  Do the instructions need to be
updated?

Best,
Brian

Brian Bouterse
Secure Open Systems Initiative
919.698.8796



Reply via email to