Hi all,
Recently we passed to pool accounts also for sgm and prd users.
From that time on some software managers are not able to install
properly their software on our exp_soft host.
How may we set ownerships and permissions for each VO dir, subdirs and
files?
Currently we try to chown <vo>sgm001:<vo>sgm and chmod 775 but it's not
the solution.
Thank you for any suggestions.
Simone
Fokke Dijkstra wrote:
> Hello Maarten,
>
> Maarten Litmaath wrote:
>> Fokke Dijkstra wrote:
>>
>>> Hello all,
>>>
>>> I have updated our site for the R-GMA security update and suddenly
>>> the globus-mds stopped working.
>>> Some debugging showed me that the permissions on the file
>>> /opt/globus/openldap/libexec/gcc32dbgpthr/libback_ldap.la had changed
>>> from world readable to only readable by root.
>>>
>>> After testing on other nodes I found that this file is touched by the
>>> upgrade of vdt_globus_essentials from version VDT1.2.2rh9-1 to
>>> version VDT1.2.2rh9_LCG-1. Which is strange, because the file is not
>>> owned by that package, but by vdt_globus_info_essentials.
>>>
>>> I now think that the permissions get changed because of running
>>> "apt-get -y upgrade" using cfengine, our system management software.
>>> Still this should not have happened.
>>
>> This means that your default "umask" for root is 077 instead of 022.
>> The vdt_globus_essentials rpm has a post-install script that remakes
>> all Globus-related *.la files, whether they belong to the rpm or not.
>
> You are correct. cfengine sets a default umask 077 for shell commands. I
> now found that the documentation of cfengine describes that this may be
> a problem with commands like yum and rpm. It is also described how to
> solve this.
>
> Thanks for your help.
>
> Fokke
>
|