directory ownership changes

This support forum board is for support questions relating to Nagios XI, our flagship commercial network monitoring solution.
Locked
Bitflogger
Posts: 226
Joined: Mon Oct 16, 2017 9:24 am

directory ownership changes

Post by Bitflogger »

Hello, I'm running v5.6.1 on a VM CentOS 7 64-bit server.

This is a TEST server, and in this case I'm testing the upgrade to 5.6.1. Almost no one does anything on the server.

I ran an upgrade to 5.6.1, from 5.6.0, using the sudo command.

I have been warned by a log rotate task as follows:

/etc/cron.daily/logrotate:

error: skipping "/usr/local/nagiosxi/var/cleaner.log" because parent directory has insecure permissions
(It's world writable or writable by group which is not "root")
Set "su" directive in config file to tell logrotate which user/group should be used for rotation.

I noticed that the ownership of some directories has changed:

[xxx@nagiostest nagiosxi]$ pwd
/usr/local/nagiosxi
[xxx@nagiostest nagiosxi]$ ls -ald *
drwxr-xr-x 2 root nagios 262 Feb 11 12:22 cron
drwxr-xr-x 4 root nagios 67 May 3 14:44 etc
drwxr-xr-x 17 root nagios 4096 Mar 6 13:03 html
drwxr-xr-x 3 root nagios 25 Feb 11 12:22 nom
drwxr-xr-x 4 root nagios 4096 May 3 14:44 scripts
drwsrwsr-x 2 root nagios 6 Apr 22 16:27 tmp
drwxr-xr-x 2 root nagios 4096 Feb 11 12:22 tools
drwxrwxr-x 7 root nagios 4096 May 6 09:10 var
[xxx@nagiostest nagiosxi]$

Those directories on our production 5.5.11 server are owned by the nagios user.

[xxx@nagiosprod nagiosxi]$ ls -ald *
drwxr-xr-x 2 nagios nagios 290 Jul 2 2018 cron
drwxr-xr-x 3 nagios nagios 46 May 1 2018 etc
drwxr-xr-x 19 nagios nagios 4096 Jan 22 13:14 html
drwxr-xr-x 3 nagios nagios 25 May 1 2018 nom
drwxr-xr-x 3 nagios nagios 4096 May 6 07:05 scripts
drwsrwsr-x 3 nagios nagios 91 Mar 5 17:20 tmp
drwxr-xr-x 2 nagios nagios 4096 May 1 2018 tools
drwxr-xr-x 7 nagios nagios 4096 May 6 09:03 var
[xxx@nagiosprod nagiosxi]$

Is the ownership change intentional? Should my log rotate task be change to acommodate it?

Earl
Top
hbouma
Posts: 483
Joined: Tue Feb 27, 2018 9:31 am

Re: directory ownership changes

Post by hbouma »

I am seeing the same thing:

https://support.nagios.com/forum/viewto ... 16&t=53737
Top
User avatar
cdienger
Support Tech
Posts: 5045
Joined: Tue Feb 07, 2017 11:26 am

Re: directory ownership changes

Post by cdienger »

The change to root ownership was put in place to take care of potential vulnerabilities. Except for the var directory, you can keep them set to root ownership.

Switch the var directory to nagios ownership:

Code: Select all

chown nagios:nagios /usr/local/nagiosxi/var
This will be fixed in 5.6.2.
As of May 25th, 2018, all communications with Nagios Enterprises and its employees are covered under our new Privacy Policy.
Top
Bitflogger
Posts: 226
Joined: Mon Oct 16, 2017 9:24 am

Re: directory ownership changes

Post by Bitflogger »

OK, please lock it.

Thanks!

Earl
Top
User avatar
cdienger
Support Tech
Posts: 5045
Joined: Tue Feb 07, 2017 11:26 am

Re: directory ownership changes

Post by cdienger »

Locking.
As of May 25th, 2018, all communications with Nagios Enterprises and its employees are covered under our new Privacy Policy.
Top
Locked

Return to “Nagios XI”