Date: Sun, 11 Dec 2016 15:05:03 +0000 From: Kaya Saman <kayasaman@gmail.com> To: Miroslav Lachman <000.fbsd@quip.cz>, freebsd-jail@freebsd.org Subject: Re: Getting "Permission Denied" issues after migrating jails Message-ID: <78892b93-0a7d-b84a-6599-ce094735c9eb@gmail.com> In-Reply-To: <584D6A13.9010502@quip.cz> References: <aca136d9-e7bd-6b15-27dd-570966cb33bb@gmail.com> <584D6A13.9010502@quip.cz>
next in thread | previous in thread | raw e-mail | index | archive | help
Thanks a lot Miroslav :-) I found the issue eventually..... For some reason it turns out the /var directory got set to 700 permissions after the rsync..... a simple chmod 755 /var fixed the issue, however, it looks like all 5 of my jails had the same problem? on vuln.xml the permissions were fine 444. Well took till 4am to sort out, I ended up rebuilding all my ports too just to be safe of sym link and permission issues. Regards, Kaya On 12/11/2016 03:00 PM, Miroslav Lachman wrote: > Kaya Saman wrote on 2016/12/10 15:33: > >> which suggests fixing the noexec flags. On the actual ZFS dataset the >> exec=on parameter is already set meaning that this must be a local issue >> and something to do with the "chflags" command but I can't recall or >> even find any clue on which files to run the command on and parameters >> to use in "man chflags". > > Run ls -lo /var/db/pkg/vuln.xml to view permissions. > > You can use something like this to check all files with specified flag > > find /path/to/jail/ -flags +schg -exec ls -lo {} + > > Then check what is your kern_securelevel settings in host and in a > jails rc.conf. You cannot modify files witch flags is securelevel is > higher than 0. > > Miroslav Lachman >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?78892b93-0a7d-b84a-6599-ce094735c9eb>