cfengine fails when installing from a CD created by fai-cd
Andreas B. Mundt
andi.mundt at web.de
Sat Jan 7 16:24:24 CET 2012
Hi,
having built a CD with fai-cd including the config space and Debian mirror
for http://wiki.debian.org/DebianLAN/ , I observed the following:
The installation fails when installing from the CD because the
execution of the cfengine scripts aborts. Cfengine reports a problem
with permissions/privacy of /var/lib/cfengine2/rpc_in.
(RPC input directory ... was not private).
Indeed, the directories in /var/lib/cfengine2/ in the installation
environment are all read- and 'executable' by everybody. This is not
the case when installing via network with nfs-mounted live system i.e. in
/srv/fai/nfsroot/live/filesystem.dir/var/lib/cfengine2/ of the faiserver:
root at FAIseed:~# ls -l /srv/fai/nfsroot/live/filesystem.dir/var/lib/cfengine2/
total 24
lrwxrwxrwx 1 root root 9 Dec 4 11:14 bin -> /usr/sbin
lrwxrwxrwx 1 root root 13 Dec 4 11:14 inputs -> /etc/cfengine
drwx------ 2 root root 4096 Dec 4 11:16 modules
drwx------ 2 root root 4096 Dec 4 11:16 ppkeys
-rw-r--r-- 1 root root 1024 Dec 4 11:16 randseed
drwx------ 2 root root 4096 Dec 4 11:16 rpc_in
drwx------ 2 root root 4096 Dec 4 11:16 rpc_out
drwxr-xr-x 2 root root 4096 Dec 4 11:16 state
However, the mounted CD image already shows the wrong permissions:
$ ls -l /mnt/live/filesystem.dir/var/lib/cfengine2/
total 11
lr-xr-xr-x 1 root root 9 Dec 4 11:14 bin -> /usr/sbin
lr-xr-xr-x 1 root root 13 Dec 4 11:14 inputs -> /etc/cfengine
dr-xr-xr-x 2 root root 2048 Dec 4 11:16 modules
dr-xr-xr-x 2 root root 2048 Dec 4 11:16 ppkeys
-r--r--r-- 1 root root 1024 Dec 4 11:16 randseed
dr-xr-xr-x 2 root root 2048 Dec 4 11:16 rpc_in
dr-xr-xr-x 2 root root 2048 Dec 4 11:16 rpc_out
dr-xr-xr-x 2 root root 2048 Dec 4 11:16 state
It would be quite nice to be able to use the fai-cd approach to
install a FAI system also with cfengine scripts in place.
Any ideas?
Best regards,
Andi
More information about the linux-fai
mailing list