Válasz: Re: [rsbac] rsbac_rc_get_item () returnederror -1009! rsbac thread pid 4294967295 ?? BUG in attr_set_user
gabor.horvath at konicaminolta.hu
gabor.horvath at konicaminolta.hu
Mon Jan 19 11:49:49 CET 2004
Dear Amon,
I found the error. In the backup script there was an
attr_set_user -V 66050 remotecopy rc_def_role 20185
although there was no remotecopy user on the system. Unfortunately it
didn't say "There is no user" or some similar error message instead it
applied it to user 0 !!!!
I think it is worth to correct this. On the other hand it would be great if
backup_all would use user names and not uids (auth_set_cap FILE add
"//usr/sbin/postsuper" postfix instead of auth_set_cap FILE add
"//usr/sbin/postsuper" 100).
Thank you for your attention !
Üdvözlettel / Kind regards
Gábor Horváth
IT Specialist
KONICA MINOLTA HUNGARY
Tel : +36-1-4649-013
Fax: +36-1-4649-092
mailto:gabor.horvath at konicaminolta.hu
http://www.konicaminolta.hu
|---------+---------------------------->
| | Amon Ott |
| | <ao at rsbac.org> |
| | Feladó: |
| | rsbac-bounces at rsb|
| | ac.org |
| | |
| | |
| | 2004.01.18 20:03 |
| | Kérem, |
| | válaszoljon ennek|
| | a személynek: |
| | RSBAC Discussion |
| | and Announcements|
| | |
|---------+---------------------------->
>---------------------------------------------------------------------------------------------------------------------------|
| |
|Címzett: RSBAC Discussion and Announcements <rsbac at rsbac.org> |
|Másolat: |
|Tárgy: Re: [rsbac] rsbac_rc_get_item () returned error -1009! rsbac thread pid 4294967295 ?? |
>---------------------------------------------------------------------------------------------------------------------------|
Hello Gabor!
On Freitag, 16. Januar 2004 14:33, gabor.horvath at konicaminolta.hu wrote:
> I have a strange error now. I ahve installed a standard (v3) Debian and
> applied my rsbac backup to it. I was very surprised when I realized that
I
> cannot boot the machine. At the very moment when init should start I get
a
> shell. No access to anything. Just internal commands. cd /etc : operation
> not permitted...
The usual question here: Does it work in softmode? When restoring a backup
from an older version, there might be some essential rights missing, which
are only available in the later version.
> Removed all rsbac.dat and booting (not maintance kernel) is OK. rsbac
> regenerated standard settings.
>
> Restored only a subset (including just rc_type_fds) to the machine I got
> (just before init should start)
> rsbac_adf_request_rc(): rsbac_rc_get_item() returned error -1009!
This is RSBAC_ENOTFOUND - RC cannot find the type definition for a type set
in
an rc_type_fd attribute. This is an inconsistent configuration.
> rsbac_init(): Started rsbac thread with pid 4294967295
(!!!!!!!!!!!!!!!!!)
> kernel pani: no init found (blah..blah..)
Ouch, -1 means that the kernel thread could not be started! Never saw that
before, this is the reason why there is not even an error check here.
> kernel is 2.4.24 with rsbac 1.2.2 (all the 6 bugfixes are applied). This
> machine uses two SATA HDDs with software RAID but as no problem with
> standard settings I suppose this is not a problem.
Software RAID is fine, I use it myself sometimes.
> My rsbac settings are working on more then 4 machines with 1.2.2-pre5
> version without any problem.
> I am very frustated because I cannot get a shell to see what can be the
> problem (without init). rsbacd thread pid is also very interesting
above..
>
> Anyone with a clue?
Another check: Did you possibly try to restore with 1.2.2-pre5 admin tools
on
a 1.2.2-final system? This combination leads to bad setup corruption,
because
the parameters differ and the version check sees the same version.
Amon.
--
http://www.rsbac.org - GnuPG: 2048g/5DEAAA30 2002-10-22
_______________________________________________
rsbac mailing list
rsbac at rsbac.org
http://www.rsbac.org/mailman/listinfo/rsbac
More information about the rsbac
mailing list