/var/log/messages permission denied
list Gavin Leonard
When I look at my messages status on the Main BB page I only see this? Do I need to change the perms on the /var/log/messages folder? No entries in /var/log/messages<http://misery.pgx.local/hobbit-cgi/bb-hostsvc.sh?CLIENT=pbx-01&SECTION=msgs:/var/log/messages>; Full log /var/log/messages<http://misery.pgx.local/hobbit-cgi/bb-hostsvc.sh?CLIENT=pbx-01&SECTION=msgs:/var/log/messages>; Cannot open logfile /var/log/messages : Permission denied Gavin Leonard [cid:image001.gif at 01C8B6EF.046C8940] Director, Systems-Network Engineering T XXX-XXX-XXXX F XXX-XXX-XXXX E user-d65663809eb4@xymon.invalid<mailto:user-d65663809eb4@xymon.invalid> Research | Marketing | Sales Generation www.progrexion.com<http://www.progrexion.com/>; This email and its contents are confidential. If you are not the intended recipient, delete this email and do not use or disclose the information within this email or its attachments. Thank you.
list Josh Luthman
chgrp HOBBITUSER /var/log/messages chmod g+r /var/log/messages Taken from: http://en.wikibooks.org/wiki/System_Monitoring_with_Hobbit/Administration_Guide/Compiling_on_CentOS On Fri, May 16, 2008 at 2:51 AM, Gavin Leonard <user-d65663809eb4@xymon.invalid>
▸
wrote:
When I look at my messages status on the Main BB page I only see this? Do I need to change the perms on the /var/log/messages folder?
No entries in /var/log/messages <http://misery.pgx.local/hobbit-cgi/bb-hostsvc.sh?CLIENT=pbx-01&SECTION=msgs:/var/log/messages>; Full log /var/log/messages <http://misery.pgx.local/hobbit-cgi/bb-hostsvc.sh?CLIENT=pbx-01&SECTION=msgs:/var/log/messages>; Cannot open logfile /var/log/messages : Permission denied *Gavin Leonard* [image: cid:image001.gif at 01C856AD.922EF120] Director, Systems-Network Engineering *T* XXX-XXX-XXXX *F* XXX-XXX-XXXX *E* user-d65663809eb4@xymon.invalid Research | Marketing | Sales Generation *www.progrexion.com* <http://www.progrexion.com/>;
▸
This email and its contents are confidential. If you are not the intended
recipient, delete this email and do not use or disclose the information
within this email or its attachments. Thank you.
--
Josh Luthman
Office: XXX-XXX-XXXX
Direct: XXX-XXX-XXXX
XXXX Wayne St
Suite XXXX
Troy, OH XXXXX
Those who don't understand UNIX are condemned to reinvent it, poorly.
--- Henry Spencer
list Björgvin Þorgrímsson
We had this problem aswell at our site. What seems to be happening is logrotate makes a new /var/log/messages file and changes the permissions on the file. What we did to fix this was: 1. Make a new goup and add the hobbit/bb user to the grp. 2. Edit /etc/logrotate.d/syslog and add/edit the following line create 640 root "name of group" Then hobbit/bb should be able to read the file. Kveðja / With regards Björgvin Þorgrímsson Kerfisstjóri Unix - Þjónusta fyrirtækjasviðs Sími / Tel. +XXX XXX XXXX Fax +XXX XXX XXXX Ármúli 31 * 108 Reykjavík * Iceland * http://www.siminn.is <http://www.siminn.is/>; Síminn auðgar lífið
▸
From: Josh Luthman [mailto:user-4c45a83f15cb@xymon.invalid] Sent: 16. maí 2008 06:56 To: user-ae9b8668bcde@xymon.invalid Subject: Re: [hobbit] /var/log/messages permission denied chgrp HOBBITUSER /var/log/messages chmod g+r /var/log/messages Taken from: http://en.wikibooks.org/wiki/System_Monitoring_with_Hobbit/Administration_Guide/Compiling_on_CentOS On Fri, May 16, 2008 at 2:51 AM, Gavin Leonard <user-d65663809eb4@xymon.invalid> wrote: When I look at my messages status on the Main BB page I only see this? Do I need to change the perms on the /var/log/messages folder? No entries in /var/log/messages <http://misery.pgx.local/hobbit-cgi/bb-hostsvc.sh?CLIENT=pbx-01&SECTION=msgs:/var/log/messages>; Full log /var/log/messages <http://misery.pgx.local/hobbit-cgi/bb-hostsvc.sh?CLIENT=pbx-01&SECTION=msgs:/var/log/messages>; Cannot open logfile /var/log/messages : Permission denied Gavin Leonard Director, Systems-Network Engineering T XXX-XXX-XXXX F XXX-XXX-XXXX E
user-d65663809eb4@xymon.invalid <mailto:user-d65663809eb4@xymon.invalid>
▸
Research | Marketing | Sales Generation www.progrexion.com <http://www.progrexion.com/>; This email and its contents are confidential. If you are not the intended recipient, delete this email and do not use or disclose the information within this email or its attachments. Thank you. -- Josh Luthman Office: XXX-XXX-XXXX Direct: XXX-XXX-XXXX XXXX Wayne St Suite XXXX Troy, OH XXXXX Those who don't understand UNIX are condemned to reinvent it, poorly. --- Henry Spencer
list Paul Krash
I noticed on Centos 4 through 5.1 that the permissions on /var/log/messages do not hold after the logs are rotated. I added the chmod and chgrp commands to the logrotate scripts. Not sure if this happens on other versions.... Best, PKrash
▸
From: Josh Luthman [mailto:user-4c45a83f15cb@xymon.invalid]
Sent: Friday, May 16, 2008 1:56 AM
To: user-ae9b8668bcde@xymon.invalid
Subject: Re: [hobbit] /var/log/messages permission denied
chgrp HOBBITUSER /var/log/messages
chmod g+r /var/log/messages
Taken from: http://en.wikibooks.org/wiki/System_Monitoring_with_Hobbit/Administratio n_Guide/Compiling_on_CentOS
▸
On Fri, May 16, 2008 at 2:51 AM, Gavin Leonard <user-d65663809eb4@xymon.invalid>
wrote:
When I look at my messages status on the Main BB page I only see
this? Do I need to change the perms on the /var/log/messages folder?
No entries in /var/log/messages<http://misery.pgx.local/hobbit-cgi/bb-hostsvc.sh?CLIENT=pbx-01&SECTION= msgs:/var/log/messages> Full log /var/log/messages <http://misery.pgx.local/hobbit-cgi/bb-hostsvc.sh?CLIENT=pbx-01&SECTION= msgs:/var/log/messages>
▸
Cannot open logfile /var/log/messages : Permission denied Gavin Leonard Director, Systems-Network Engineering T XXX-XXX-XXXX F XXX-XXX-XXXX E user-d65663809eb4@xymon.invalid <mailto:user-d65663809eb4@xymon.invalid> Research | Marketing | Sales Generation www.progrexion.com <http://www.progrexion.com/>; This email and its contents are confidential. If you are not the intended recipient, delete this email and do not use or disclose the information within this email or its attachments. Thank you. -- Josh Luthman Office: XXX-XXX-XXXX Direct: XXX-XXX-XXXX XXXX Wayne St Suite XXXX Troy, OH XXXXX Those who don't understand UNIX are condemned to reinvent it, poorly. --- Henry Spencer
This e-mail and any documents accompanying it may contain legally privileged and/or confidential information belonging to Exegy, Inc. Such information may be protected from disclosure by law. The information is intended for use by only the addressee. If you are not the intended recipient, you are hereby notified that any disclosure or use of the information is strictly prohibited. If you have received this e-mail in error, please immediately contact the sender by e-mail or phone regarding instructions for return or destruction and do not use or disclose the content to others.
list T.J. Yang
Our approach to this issue is to have hobbit client install/removal non-intrusive to client system. 1. have hobbit client depend on sudo package. 2. add entry for hobbit client's account in sudoer file. 3. make sure SUDO is point to correct sudo binary. 4. remove hobbit client entry upon removal of hobbit client package. T.J. Yang
▸
Date: Fri, 16 May 2008 12:10:22 +0000 From: user-86d0ecc4f2c5@xymon.invalid To: user-ae9b8668bcde@xymon.invalid Subject: RE: [hobbit] /var/log/messages permission denied We had this problem aswell at our site. What seems to be happening is logrotate makes a new /var/log/messages file and changes the permissions on the file. What we did to fix this was: 1. Make a new goup and add the hobbit/bb user to the grp. 2. Edit /etc/logrotate.d/syslog and add/edit the following line create 640 root „name of group“ Then hobbit/bb should be able to read the file. Kveðja / With regards Björgvin Þorgrímsson Kerfisstjóri Unix - Þjónusta fyrirtækjasviðs Sími / Tel. +XXX XXX XXXX Fax +XXX XXX XXXX Ármúli 31 • 108 Reykjavík • Iceland • http://www.siminn.is Síminn auðgar lífið From: Josh Luthman [mailto:user-4c45a83f15cb@xymon.invalid] Sent: 16. maí 2008 06:56 To: user-ae9b8668bcde@xymon.invalid Subject: Re: [hobbit] /var/log/messages permission denied chgrp HOBBITUSER /var/log/messages chmod g+r /var/log/messages Taken from: http://en.wikibooks.org/wiki/System_Monitoring_with_Hobbit/Administration_Guide/Compiling_on_CentOS On Fri, May 16, 2008 at 2:51 AM, Gavin Leonard <user-d65663809eb4@xymon.invalid> wrote: When I look at my messages status on the Main BB page I only see this? Do I need to change the perms on the /var/log/messages folder?
No entries in /var/log/messages Full log /var/log/messagesCannot open logfile /var/log/messages : Permission denied
▸
Gavin Leonard
Director,
Systems-Network Engineering
T
XXX-XXX-XXXX
F
XXX-XXX-XXXX
E
user-d65663809eb4@xymon.invalid
Research
| Marketing | Sales Generation
www.progrexion.com
This
email and its contents are confidential. If you are not the intended
recipient, delete this email and do not use or disclose the information
within this email or its attachments. Thank you.
--
Josh Luthman
Office: XXX-XXX-XXXX
Direct: XXX-XXX-XXXX
XXXX Wayne St
Suite XXXX
Troy, OH XXXXX
Those who don't understand UNIX are condemned to reinvent it, poorly.
--- Henry Spencer
Give to a good cause with every e-mail. Join the i’m Initiative from Microsoft. http://im.live.com/Messenger/IM/Join/Default.aspx?souce=EML_WL_ GoodCause
list Josh Luthman
Can you give us all some details on how do to that?
▸
On Fri, May 16, 2008 at 1:37 PM, Krash, Paul <user-3e9d978365e3@xymon.invalid> wrote:
I noticed on Centos 4 through 5.1 that the permissions on /var/log/messages do not hold after the logs are rotated. I added the chmod and chgrp commands to the logrotate scripts. Not sure if this happens on other versions.... Best, PKrash *From:* Josh Luthman [mailto:user-4c45a83f15cb@xymon.invalid] *Sent:* Friday, May 16, 2008 1:56 AM *To:* user-ae9b8668bcde@xymon.invalid *Subject:* Re: [hobbit] /var/log/messages permission denied chgrp HOBBITUSER /var/log/messages chmod g+r /var/log/messages Taken from: http://en.wikibooks.org/wiki/System_Monitoring_with_Hobbit/Administration_Guide/Compiling_on_CentOS On Fri, May 16, 2008 at 2:51 AM, Gavin Leonard <user-d65663809eb4@xymon.invalid> wrote:When I look at my messages status on the Main BB page I only see this? Do I need to change the perms on the /var/log/messages folder? No entries in /var/log/messages <http://misery.pgx.local/hobbit-cgi/bb-hostsvc.sh?CLIENT=pbx-01&SECTION=msgs:/var/log/messages>; Full log /var/log/messages <http://misery.pgx.local/hobbit-cgi/bb-hostsvc.sh?CLIENT=pbx-01&SECTION=msgs:/var/log/messages>; Cannot open logfile /var/log/messages : Permission denied *Gavin Leonard* [image: cid:image001.gif at 01C856AD.922EF120] Director, Systems-Network Engineering *T* XXX-XXX-XXXX *F* XXX-XXX-XXXX *E* user-d65663809eb4@xymon.invalid Research | Marketing | Sales Generation *www.progrexion.com* <http://www.progrexion.com/>; This email and its contents are confidential. If you are not the intended recipient, delete this email and do not use or disclose the information within this email or its attachments. Thank you.-- Josh Luthman Office: XXX-XXX-XXXX Direct: XXX-XXX-XXXX XXXX Wayne St Suite XXXX Troy, OH XXXXX Those who don't understand UNIX are condemned to reinvent it, poorly. --- Henry Spencer ** This e-mail and any documents accompanying it may contain legally privileged and/or confidential information belonging to Exegy, Inc. Such information may be protected from disclosure by law. The information is intended for use by only the addressee. If you are not the intended recipient, you are hereby notified that any disclosure or use of the information is strictly prohibited. If you have received this e-mail in error, please immediately contact the sender by e-mail or phone regarding instructions for return or destruction and do not use or disclose the content to others.
-- Josh Luthman Office: XXX-XXX-XXXX Direct: XXX-XXX-XXXX XXXX Wayne St Suite XXXX Troy, OH XXXXX Those who don't understand UNIX are condemned to reinvent it, poorly. --- Henry Spencer
list Hobbit User in Richmond
It would seem simplest just to drop a CREATE 640 root:hobbitgroup into /etc/logrotate.d/rsyslog or /etc/logrotate.d/syslog, depending on which syslogging daemon you use. This will handle the list of files at the top of that config file. Make sure you have the default include for logrotate.d in /etc/logrotate.conf.
▸
On Fri, May 16, 2008 20:21, Josh Luthman wrote:Can you give us all some details on how do to that? On Fri, May 16, 2008 at 1:37 PM, Krash, Paul <user-3e9d978365e3@xymon.invalid> wrote:I noticed on Centos 4 through 5.1 that the permissions on /var/log/messages do not hold after the logs are rotated. I added the chmod and chgrp commands to the logrotate scripts. Not sure if this happens on other versions.... Best, PKrash ------------------------------ *From:* Josh Luthman [mailto:user-4c45a83f15cb@xymon.invalid] *Sent:* Friday, May 16, 2008 1:56 AM *To:* user-ae9b8668bcde@xymon.invalid *Subject:* Re: [hobbit] /var/log/messages permission denied chgrp HOBBITUSER /var/log/messages chmod g+r /var/log/messages Taken from:
http://en.wikibooks.org/wiki/System_Monitoring_with_Hobbit/Administrati on_Guide/Compiling_on_CentOS
▸
On Fri, May 16, 2008 at 2:51 AM, Gavin Leonard <user-d65663809eb4@xymon.invalid> wrote:When I look at my messages status on the Main BB page I only see this? Do I need to change the perms on the /var/log/messages folder? No entries in /var/log/messages
<http://misery.pgx.local/hobbit-cgi/bb-hostsvc.sh?CLIENT=pbx-01&SECTI ON=msgs:/var/log/messages> Full log /var/log/messages <http://misery.pgx.local/hobbit-cgi/bb-hostsvc.sh?CLIENT=pbx-01&SECTI ON=msgs:/var/log/messages>
▸
Cannot open logfile /var/log/messages : Permission denied *Gavin Leonard* [image: cid:image001.gif at 01C856AD.922EF120] Director, Systems-Network Engineering *T* XXX-XXX-XXXX *F* XXX-XXX-XXXX *E* user-d65663809eb4@xymon.invalid Research | Marketing | Sales Generation *www.progrexion.com* <http://www.progrexion.com/>; This email and its contents are confidential. If you are not the intended recipient, delete this email and do not use or disclose the information within this email or its attachments. Thank you.-- Josh Luthman Office: XXX-XXX-XXXX Direct: XXX-XXX-XXXX XXXX Wayne St Suite XXXX Troy, OH XXXXX Those who don't understand UNIX are condemned to reinvent it, poorly. --- Henry Spencer ** This e-mail and any documents accompanying it may contain legally privileged and/or confidential information belonging to Exegy, Inc. Such information may be protected from disclosure by law. The information is intended for use by only the addressee. If you are not the intended recipient, you are hereby notified that any disclosure or use of the information is strictly prohibited. If you have received this e-mail in error, please immediately contact the sender by e-mail or phone regarding instructions for return or destruction and do not use or disclose the content to others.-- Josh Luthman Office: XXX-XXX-XXXX Direct: XXX-XXX-XXXX XXXX Wayne St Suite XXXX Troy, OH XXXXX Those who don't understand UNIX are condemned to reinvent it, poorly. --- Henry Spencer
list Hobbit User in Richmond
Oh, fiddle. Just actually looked, lower case create, no colon between user and group.
▸
On Fri, May 16, 2008 21:32, Hobbit User in Richmond wrote:It would seem simplest just to drop a CREATE 640 root:hobbitgroup into /etc/logrotate.d/rsyslog or /etc/logrotate.d/syslog, depending on which syslogging daemon you use. This will handle the list of files at the top of that config file. Make sure you have the default include for logrotate.d in /etc/logrotate.conf.
list Paul Krash
▸
Mr. Luthman wrote:
Can you give us all some details on how do to that?
Sure! Here is the default script from Centos5.1 with the chmod command: #/etc/cron.daily/logrotate #!/bin/sh /usr/sbin/logrotate /etc/logrotate.conf EXITVALUE=$? if [ $EXITVALUE != 0 ]; then /usr/bin/logger -t logrotate "ALERT exited abnormally with [$EXITVALUE]" fi /bin/chmod 755 /var/log/messages exit 0 Notice that this makes /var/log/messages world readable. :-O But I digress. :-) Best, PKrash, temporarily working off a Winserver, sorry for any Outlook mangling.
▸
This e-mail and any documents accompanying it may contain legally privileged and/or confidential information belonging to Exegy, Inc. Such information may be protected from disclosure by law. The information is intended for use by only the addressee. If you are not the intended recipient, you are hereby notified that any disclosure or use of the information is strictly prohibited. If you have received this e-mail in error, please immediately contact the sender by e-mail or phone regarding instructions for return or destruction and do not use or disclose the content to others.
list L.M.J
Le Fri, 16 May 2008 00:51:46 -0600,
▸
Gavin Leonard <user-d65663809eb4@xymon.invalid> a écrit :
When I look at my messages status on the Main BB page I only see this? Do I need to change the perms on the /var/log/messages folder? No entries in /var/log/messages<http://misery.pgx.local/hobbit-cgi/bb-hostsvc.sh?CLIENT=pbx-01&SECTION=msgs:/var/log/messages>; Full log /var/log/messages<http://misery.pgx.local/hobbit-cgi/bb-hostsvc.sh?CLIENT=pbx-01&SECTION=msgs:/var/log/messages>; Cannot open logfile /var/log/messages : Permission denied
Hello Gavin, Here ll /var/log/messages -rw-r----- 1 root adm 5137 2008-05-18 09:11 /var/log/messages I would add Hobbit in the "adm" group, what do you think about it ? CU
list Josh Luthman
For the record...on all of my CentOS 5 and 5.1 boxes it stuck with the modified group.
▸
On Sat, May 17, 2008 at 11:21 AM, Krash, Paul <user-3e9d978365e3@xymon.invalid> wrote:
Mr. Luthman wrote:Can you give us all some details on how do to that?Sure! Here is the default script from Centos5.1 with the chmod command: #/etc/cron.daily/logrotate #!/bin/sh /usr/sbin/logrotate /etc/logrotate.conf EXITVALUE=$? if [ $EXITVALUE != 0 ]; then /usr/bin/logger -t logrotate "ALERT exited abnormally with [$EXITVALUE]" fi /bin/chmod 755 /var/log/messages exit 0 Notice that this makes /var/log/messages world readable. :-O But I digress. :-) Best, PKrash, temporarily working off a Winserver, sorry for any Outlook mangling. This e-mail and any documents accompanying it may contain legally privileged and/or confidential information belonging to Exegy, Inc. Such information may be protected from disclosure by law. The information is intended for use by only the addressee. If you are not the intended recipient, you are hereby notified that any disclosure or use of the information is strictly prohibited. If you have received this e-mail in error, please immediately contact the sender by e-mail or phone regarding instructions for return or destruction and do not use or disclose the content to others.
-- Josh Luthman Office: XXX-XXX-XXXX Direct: XXX-XXX-XXXX XXXX Wayne St Suite XXXX Troy, OH XXXXX Those who don't understand UNIX are condemned to reinvent it, poorly. --- Henry Spencer
list Paul Krash
Must be something unique in our environment.. Thanks for looking at it...
▸
----- Original Message -----
From: Josh Luthman <user-4c45a83f15cb@xymon.invalid>
To: user-ae9b8668bcde@xymon.invalid <user-ae9b8668bcde@xymon.invalid>
Sent: Mon May 19 10:15:49 2008
Subject: Re: [hobbit] /var/log/messages permission denied Centos 4 and 5
For the record...on all of my CentOS 5 and 5.1 boxes it stuck with the modified group.
On Sat, May 17, 2008 at 11:21 AM, Krash, Paul <user-3e9d978365e3@xymon.invalid> wrote:
Mr. Luthman wrote:
Can you give us all some details on how do to that?
Sure! Here is the default script from Centos5.1 with the chmod command: #/etc/cron.daily/logrotate #!/bin/sh /usr/sbin/logrotate /etc/logrotate.conf EXITVALUE=$? if [ $EXITVALUE != 0 ]; then /usr/bin/logger -t logrotate "ALERT exited abnormally with [$EXITVALUE]" fi /bin/chmod 755 /var/log/messages exit 0 Notice that this makes /var/log/messages world readable. :-O But I digress. :-) Best, PKrash, temporarily working off a Winserver, sorry for any Outlook mangling. This e-mail and any documents accompanying it may contain legally privileged and/or confidential information belonging to Exegy, Inc. Such information may be protected from disclosure by law. The information is intended for use by only the addressee. If you are not the intended recipient, you are hereby notified that any disclosure or use of the information is strictly prohibited. If you have received this e-mail in error, please immediately contact the sender by e-mail or phone regarding instructions for return or destruction and do not use or disclose the content to others. -- Josh Luthman Office: XXX-XXX-XXXX Direct: XXX-XXX-XXXX XXXX Wayne St Suite XXXX Troy, OH XXXXX Those who don't understand UNIX are condemned to reinvent it, poorly. --- Henry Spencer This e-mail and any documents accompanying it may contain legally privileged and/or confidential information belonging to Exegy, Inc. Such information may be protected from disclosure by law. The information is intended for use by only the addressee. If you are not the intended recipient, you are hereby notified that any disclosure or use of the information is strictly prohibited. If you have received this e-mail in error, please immediately contact the sender by e-mail or phone regarding instructions for return or destruction and do not use or disclose the content to others.
list Gavin Leonard
I will give it a try and see what happens!! Thank for the reply... -Gavin
▸
-----Original Message-----
From: L.M.J [mailto:user-78bb6d5d9024@xymon.invalid]
Sent: Sunday, May 18, 2008 1:21 AM
To: user-ae9b8668bcde@xymon.invalid
Subject: Re: [hobbit] /var/log/messages permission denied
Le Fri, 16 May 2008 00:51:46 -0600,
Gavin Leonard <user-d65663809eb4@xymon.invalid> a écrit :
When I look at my messages status on the Main BB page I only see this? Do I need to change the perms on the /var/log/messages folder? No entries in
/var/log/messages<http://misery.pgx.local/hobbit-cgi/bb-hostsvc.sh?CLI ENT=pbx-01&SECTION=msgs:/var/log/messages> Full log /var/log/messages<http://misery.pgx.local/hobbit-cgi/bb-hostsvc.sh?CLI ENT=pbx-01&SECTION=msgs:/var/log/messages>
▸
Cannot open logfile /var/log/messages : Permission deniedHello Gavin, Here ll /var/log/messages -rw-r----- 1 root adm 5137 2008-05-18 09:11 /var/log/messages I would add Hobbit in the "adm" group, what do you think about it ? CU