Skip to content

Instantly share code, notes, and snippets.

@jehoshua02

jehoshua02/chmod_opt_gitosis.md

Created December 3, 2011 13:19
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save jehoshua02/1427103 to your computer and use it in GitHub Desktop.
Save jehoshua02/1427103 to your computer and use it in GitHub Desktop.
Download ZIP
Ubuntu 10.04 LTS setfacl problems
Raw
chmod_opt_gitosis.md

Ka-ching

Redmine needs x-powers on /opt/gitosis:

projectadmin@projectsrv:~$ sudo chmod 777 /opt/gitosis/
projectadmin@projectsrv:~$ sudo -u redmine cat ~redmine/apps/redmine/vendor/plugins/redmine-gitosis/extra/ssh/private_key
-----BEGIN DSA PRIVATE KEY-----
...
-----END DSA PRIVATE KEY-----
Raw
getfacl_output.md

Output for getfacl

projectadmin@projectsrv:~$ sudo getfacl ~git/.ssh/ ~git/.ssh/id_dsa ~redmine/apps/redmine/vendor/plugins/redmine-gitosis/extra/ssh/private_key
getfacl: Removing leading '/' from absolute path names
# file: opt/gitosis/.ssh/
# owner: git
# group: git
user::rwx
user:redmine:r-x
group::---
mask::r-x
other::---

# file: opt/gitosis/.ssh/id_dsa
# owner: git
# group: git
user::rw-
user:redmine:r--
group::---
mask::r--
other::---

# file: opt/redmine/apps/redmine/vendor/plugins/redmine-gitosis/extra/ssh/private_key
# owner: git
# group: git
user::rw-
user:redmine:r--
group::---
mask::r--
other::---
Raw
ls_-lad_output.md

Output for ls -lad . . .

projectadmin@projectsrv:~$ sudo ls -lad /opt /opt/gitosis/ /opt/gitosis/.ssh/
drwxr-xr-x  4 root root 4096 2011-12-03 04:47 /opt
drwxr-x---  6 git  git  4096 2011-12-03 04:49 /opt/gitosis/
drwxr-x---+ 2 git  git  4096 2011-12-03 04:49 /opt/gitosis/.ssh/
Raw
mount.md

Output for mount

projectadmin@projectsrv:~$ mount
/dev/mapper/projectsrv-root on / type ext4 (rw,acl,errors=remount-ro)
proc on /proc type proc (rw,noexec,nosuid,nodev)
none on /sys type sysfs (rw,noexec,nosuid,nodev)
none on /sys/fs/fuse/connections type fusectl (rw)
none on /sys/kernel/debug type debugfs (rw)
none on /sys/kernel/security type securityfs (rw)
none on /dev type devtmpfs (rw,mode=0755)
none on /dev/pts type devpts (rw,noexec,nosuid,gid=5,mode=0620)
none on /dev/shm type tmpfs (rw,nosuid,nodev)
none on /var/run type tmpfs (rw,nosuid,mode=0755)
none on /var/lock type tmpfs (rw,noexec,nosuid,nodev)
none on /lib/init/rw type tmpfs (rw,nosuid,mode=0755)
none on /var/lib/ureadahead/debugfs type debugfs (rw,relatime)
/dev/sda1 on /boot type ext2 (rw)
Raw
setfacl_problems.md

setfacl problems

I'm trying to set acl rules for a symlink, on Ubuntu Server 10.04 LTS, and it just ain't working. Here's the output:

projectadmin@projectsrv:~$ sudo -u redmine ln -s ~git/.ssh/id_dsa ~redmine/apps/redmine/vendor/plugins/redmine-gitosis/extra/ssh/private_key
projectadmin@projectsrv:~$ sudo -u redmine cat ~redmine/apps/redmine/vendor/plugins/redmine-gitosis/extra/ssh/private_key
cat: /opt/redmine/apps/redmine/vendor/plugins/redmine-gitosis/extra/ssh/private_key: Permission denied
projectadmin@projectsrv:~$ sudo setfacl -m user:redmine:r-x,mask:r-x ~git/.ssh
projectadmin@projectsrv:~$ sudo setfacl -m user:redmine:r--,mask:r-- ~git/.ssh/id_dsa
projectadmin@projectsrv:~$ sudo -u redmine cat ~redmine/apps/redmine/vendor/plugins/redmine-gitosis/extra/ssh/private_key
cat: /opt/redmine/apps/redmine/vendor/plugins/redmine-gitosis/extra/ssh/private_key: Permission denied

I could really use some troubleshooting tips.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment