[gentoo-user] fcrontab - what am I missing?

[Helmut Jarausch]

Hi,

I've been using fcron for quite some time, but
now it behaves strange.
I have version 3.0.4-r2 installed.

Doing fcrontab -e as non-root user
I get
Could not change egid to fcron[449]: Operation not permitted

although I'm a member of group fcron.
Furthermore /etc/fcron/fcron.allow has 'all'

Even more strangely,
do - as root -
fcrontab -e USER

it lets me create a file but on closing I get

no fcrontab for jarausch - using an empty one
17:34:40 could not open file jarausch.orig.tmp: Permission denied
17:34:40 could not remove /tmp/fcr-z9FG5g: Operation not permitted

So, I'm puzzled.

Many thanks for some help,
Helmut.

--
Helmut Jarausch

Lehrstuhl fuer Numerische Mathematik
RWTH - Aachen University
D 52056 Aachen, Germany

[Dirk Heinrichs]

Am Mittwoch 30 September 2009 17:40:43 schrieb Helmut Jarausch:

> I've been using fcron for quite some time, but
> now it behaves strange.
> I have version 3.0.4-r2 installed.
>
> Doing fcrontab -e as non-root user
> I get
> Could not change egid to fcron[449]: Operation not permitted
>
> although I'm a member of group fcron.

Maybe permissions of fcrontab are borked, should be:

# ll =fcrontab
-rwsr-sr-x 1 fcron fcron 51K 10. Jun 19:28 /usr/bin/fcrontab*

HTH...

Dirk

[Helmut Jarausch]

Unfortunately, the same as here.

[Doug Hunley]

On Wed, Sep 30, 2009 at 11:40, Helmut Jarausch
<jara...@igpm.rwth-aachen.de> wrote:
> Hi,
>
> I've been using fcron for quite some time, but
> now it behaves strange.
> I have version 3.0.4-r2 installed.

If you mask that version and downgrade, does the issue persist? Do you
have a nosuid mount option in effect now that you didn't before? Is
/tmp (and or /var/tmp or even /var/spool/fcron (iirc)) truly mode 1777
?
--
Douglas J Hunley, RHCT
doug....@gmail.com : http://douglasjhunley.com : Twitter: @hunleyd

Obsessively opposed to the typical.

[Florian Philipp]

Helmut Jarausch schrieb:

> On 30 Sep, Dirk Heinrichs wrote:
>> Am Mittwoch 30 September 2009 17:40:43 schrieb Helmut Jarausch:
>>
>>> I've been using fcron for quite some time, but
>>> now it behaves strange.
>>> I have version 3.0.4-r2 installed.
>>>
>>> Doing fcrontab -e as non-root user
>>> I get
>>> Could not change egid to fcron[449]: Operation not permitted
>>>
>>> although I'm a member of group fcron.
>> Maybe permissions of fcrontab are borked, should be:
>>
>> # ll =fcrontab
>> -rwsr-sr-x 1 fcron fcron 51K 10. Jun 19:28 /usr/bin/fcrontab*
>>
> Unfortunately, the same as here.
> Helmut.
>

And the filesystem is not mounted nosuid?

[Helmut Jarausch]

On 30 Sep, Doug Hunley wrote:
> On Wed, Sep 30, 2009 at 11:40, Helmut Jarausch
> <jara...@igpm.rwth-aachen.de> wrote:
>> Hi,
>>
>> I've been using fcron for quite some time, but
>> now it behaves strange.
>> I have version 3.0.4-r2 installed.
>
> If you mask that version and downgrade, does the issue persist? Do you
> have a nosuid mount option in effect now that you didn't before? Is
> /tmp (and or /var/tmp or even /var/spool/fcron (iirc)) truly mode 1777
> ?

Strangely not,
ls -ld /var/spool/fcron
gives
drwsrws--- 2 stunnel fcron 4096 Oct 1 11:31 /var/spool/fcron

So, who is 'stunnel'. The corr. entry in /etc/passwd is
stunnel:x:104:1007:added by portage for stunnel:/dev/null:/sbin/nologin

So what is, what should be going on?

Thanks for your help,

[Doug Hunley]

On Thu, Oct 1, 2009 at 05:55, Helmut Jarausch <jara...@igpm.rwth-aachen.de>

> Strangely not,
> ls -ld  /var/spool/fcron
> gives
> drwsrws---  2 stunnel fcron  4096 Oct  1 11:31 /var/spool/fcron
>
> So, who is 'stunnel'. The corr. entry in /etc/passwd is
> stunnel:x:104:1007:added by portage for stunnel:/dev/null:/sbin/nologin
>
> So what is, what should be going on?

From the ebuild:
docrondir /var/spool/fcron -m6770 -o fcron -g fcron

so do:
chown fcron.fcron /var/spool/fcron
chmod 6770 /var/spool/fcron
chown fcron.fcron /var/spool/fcron/*

to set it right