I have been googling this for a while but am not getting anywhere. Curiosity has gotten the best of me, what are the passwd- and shadow- files used for? The date and time stamps for both the passwd- and passwd files are exactly the same, as are the shadow- and shadow files.
Are they automatically-created backups of the passwd and shadow files?
We have CentOS and WHM 11 on the server. Also we have PHP 4.4.4 and open base dir enabled on the server . We have a shared server with many website configured on it.
Now The user uses the following PHP code and can see the /etc/passwd file ============================================= <? echo ini_get("safe_mode"); echo ini_get("open_basedir"); include("/etc/passwd"); ini_restore("safe_mode"); ini_restore("open_basedir"); echo ini_get("safe_mode"); echo ini_get("open_basedir"); include("/etc/passwd"); ?> ============================================
Now how to stop this. This is a security hole. how to stop this.
We've had a customer do something strange to their server. They were playing with /etc/passwd or /etc/shadow or similar (not quite sure of the details) but the upshot is booting the server into single user and trying to reset the password via passwd gives
passwd root (and any user) passwd: Authentication token manipulation error
So far I've
Replaced /etc/passwd* and /etc/shadow* with a copy from another server Turned off SeLinux /etc/pam.d/passwd is fine Root file system is r/w
I have a VPS with Ubuntu 9.04. I've setup ISPConfig etc as per the Perfect Server Howto Forge pages.
However I'm getting a problem with the configuration of maildrop, I get
Code:
temporary failure. Command output: ERR: authdaemon: s_connect() failed: Permission denied /usr/bin/maildrop: Unable to change to home directory. ls -lah /var/vmail
I just got a barebone server. Installed apache2, php5, mysql,phpmyadmin.
I only have SSH access to the server. I wish to use CoreFTP to transfer some webpage files to /var/www folder. I can login the server using CoreFTP's SSH/SFTP and it displays all the files and directories, but I do not have the permission to write.
My question is, how do I give myself permission to write? Here is the id of my user:
I made a copy of my forum's root folder using SSH command: cp -r forum forum123
Then I tried to update the new (forum123) folder with the latest files from vBulletin.
And it gave me a permission denied error. For test purpose, I went to the original folder and uploaded one of the new files there and it worked flawlessly.
Why am I not able to upload files to the copied folder? I've been doing this since like for ever, this is the first time I've encountered such an error.
I installed Avenger on FreeBSD 6.2 as Anti-Spam and I'm not understand some configuration.
1- Avenger as me to create a user 'avenger' in group 'wheel' for its program, but when starts asmtpd , it runs under user: root and group: wheel . What is the utility to create this user 'avenger' then?
2- When I run a Debug Mod, I obtain a permission denied error
It could be a potential security problem if I left "Other" to read virtusertable.db . So my question is: Is there another way to fix this error without changing permission for Other to read virtusertable.db?
I were seeing c99.php source code to know how it gets /etc/passwd file. it simply uses fopen() for this goal but I think fopen() is needed and I don't like it to be disabled in disabled_functions. I wonder how can I disable just fopen("/etc/passwd","r"); without doing any restriction to fopen function at all
I'm migrating from shared hosting to a VPS. I have transferred my files right over, and permissions are all the same as they were on the old server.
The fopen scripts are giving me an error when trying to write to files.
Code: failed to open stream: Permission denied
The permissions on the file are 644 and it can read from the file just fine. Giving the file world write permissions fixes the problem, but I don't want to do this for obvious reasons.
I think the reason this worked on the shared server had something to do with the apache user being defined differently but I'm honestly not sure. The php file executing the command is owned by the user that owns the document I'm trying to write to (in fact one user owns everything).
how I can fix this without giving world write permissions?
I have problem with exim in my dedicated. All days I have more tham 1000 messages in queue. I delete frozen messages and run exim -v -q and after delete all message. Next day I have more that 1000 message in queue.
I see that some local emails was not delivered. So I saw in exim log errors messages as:
=== Message 1K5SHE-0001LE-LS is not frozen delivering 1K5SHE-0001LE-LS LOG: MAIN == dadinho@xx.org R=virtual_user T=virtual_userdelivery defer (13): Permission denied: while opening or reading /home/levarte/mail/xx.org/dadinho/maildirsize ===
But I have not any file called "/home/levarte/mail/xx.org/dadinho/maildirsize"
For one of may domains I'm receiving the following error when someone tries to send mail to it. Also I never receive the mail as it seems to just sit on the server. When the permission were changed on the file, it seemed to have changed back on its on when ever a new address is added. Any solutions?
so after successfully installing and testing litespeed last night along on alternate port 1080 on my cpanel setup, I try to look at my cpanel's awstats this morning and:
Error: Couldn't open server log file "/usr/local/apache/domlogs/example.net" : Permission denied
(awstats has worked fine for 5 weeks now)
Googling for this shows other people with similar problem in the past but unfortunately no answers
I tried chmod -R 644 /usr/local/apache/domlogs and looks like the owners are still correct
I'm at a loss and really screwed if I can't easily fix soon... any ideas?
(as a side note, litespeed has stopped working properly too but I've killed it for now)
FTP session opened. unable to open TransferLog '/usr/local/psa/var/log/xferlog': Too many levels of symbolic links chroot to '/var/www/vhosts/domain.com' failed for user 'user': Permission denied error: unable to set DefaultRoot directory FTP session closed.
Mail isn't leaving the queue, it's returning this error
Feb 12 23:12:01 XXXX postfix-local[64360]: System error .qmail: Permission denied Feb 12 23:12:01 XXXX postfix-local[64360]: Wrong permissions for .qmail
All the files within /var/qmail/ are set to the user and group "popuser", and have the nessacery rwx permissions for the user/group.
Since this got lost (google cache of thread discussion so far) [url] im reposting because i think it was an interesting discussion.
I'm setting up a cpanel server for the first time. I was wondering if i could harden the default cpanel permissions for the user folders in /home The idea is to prevent users viewing each others files. Please don't suggest the php open_basedir option as its not secure and doesn't work with cgi based file browsers.
Note I'm using suexec/suphp.
currently new cpanel users folders are created with group and user ownership and the permissions 755
I was thinking if i changed this to 711 would this break anything?
Could i lock this down even more by changing the group ownership to "nobody" and thus have permissions 710.