Re: [qmailtoaster] Failed build on RedHat Enterprise

Mon, 27 Oct 2008 14:34:53 -0700

Not germane to the problem at hand, but kudos to you for not logging in directly as root!
Virtually all of the "best practices" for UNIX/Linux security tell you to disable direct root access, yet surprisingly it is one of the most common security HOLES I see when I audit systems. By requiring users to log in as themselves, THEN up their privileges to root, you are effectively requiring a double-password to gain root-level access. 


Now... if you're truly a root user, please look for the following 
potential problems:
- what are the permissions on /, /var, /var/tmp, and lastly, 
/var/tmp/daemontools-0.76-show_flags

  o what we're looking here are:
     - x (execute) permissions for all the dirs & the file itself
     - w (write) permission on /var/tmp
     - t (sticky) permission on /var/tmp
  o MY values are / = 0711, /var = 0711, /var/tmp = 1773
- what is your PATH variable set to?

  o it should include 
/bin:/usr/bin:/opt/bin:/usr/local/bin:/usr/kerberos/bin and all of the 
sbin variants of those.
     - NOTE: on some systems, /opt either doesn't exist or is a 
symbolic link to /usr/local, so adjust accordingly.
  o MY value is 
PATH=/bin:/usr/bin:/opt/bin:/usr/kerberos/bin:/usr/kerberos/sbin:/opt/sbin:/usr/sbin:/sbin


Looking forward to your response....

Dan

Daniel McAllister, President

IT4SOHO, LLC
PO BOX 507
St. Petersburg, FL 33731-0507

877-IT4SOHO: Toll Free
727-647-7646 In Pinellas
813-464-2093 In Hillsborough
727-507-9435 Fax Only

"When did you do your last backup?"

Ask me about unattended offsite backup solutions...
to protect your business, not just your data!



German Molano & Asociados wrote:

Yes i do, i am as a root, but first I logged as a unprivileged user 
then switch as a root account with su - command.

And sh links to bash
# ls -alh /bin/sh
lrwxrwxrwx 1 root root 4 Aug  1 12:34 /bin/sh -> bash

    ----- Original Message -----
    *From:* Jake Vickers <mailto:[EMAIL PROTECTED]>
    *To:* qmailtoaster-list@qmailtoaster.com
    <mailto:qmailtoaster-list@qmailtoaster.com>
    *Sent:* Monday, October 27, 2008 1:23 PM
    *Subject:* Re: [qmailtoaster] Failed build on RedHat Enterprise

    German Molano & Asociados wrote:

    Hi there, i am trying to build the qmailtoaster packages
    on RedHat Enterprise Linux Server release 5.2 on a x86_64 server,
    i am getting this error on the building process:

     
    + chmod u+x /var/tmp/daemontools-0.76-show_flags

    + /var/tmp/daemontools-0.76-show_flags
    /var/tmp/rpm-tmp.28671: /var/tmp/daemontools-0.76-show_flags:
    /bin/sh: bad interpreter: Permission denied
    error: Bad exit status from /var/tmp/rpm-tmp.28671 (%prep)

    RPM build errors:
        Bad exit status from /var/tmp/rpm-tmp.28671 (%prep)
    I am logged as root and i run
    /var/tmp/daemontools-0.76-show_flags and it fails:

     
    -bash: /var/tmp/daemontools-0.76-show_flags: /bin/sh: bad

    interpreter: Permission denied

     
    What's wrong ?
     
     
    Thanks for your help
     


    Are you running as root?
    What does /bin/sh link to?























					Reply via email to