LinuxQuestions.org
Review your favorite Linux distribution.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices

Reply
 
Search this Thread
Old 11-03-2008, 09:33 AM   #1
wegadnie
Member
 
Registered: Oct 2007
Posts: 48

Rep: Reputation: 15
Arrow Help: Access permission denied


Hi,

I don't know why i has this problem so please help me out.
On my server in /home folder, the security right on all user home's folder has been changed
e.g:
drwx--x--x 3 user1 user ...
to
drwx--x--x+ 3 user1 user ...

and the result is no one can access my server via FTP as i've configured this server as FTP server. I don't know why it happens. I've executed some command that could change it back but no luck (chmod -R 711 /home/* or chown). I notice that user can not log in when their home folder got the "+" sign so what is it and how can i fixed this problem? Any idea is really appreciated.

Last edited by wegadnie; 11-03-2008 at 09:39 AM.
 
Old 11-03-2008, 09:38 AM   #2
TB0ne
Guru
 
Registered: Jul 2003
Location: Birmingham, Alabama
Distribution: SuSE, RedHat, Slack,CentOS
Posts: 14,205

Rep: Reputation: 2472Reputation: 2472Reputation: 2472Reputation: 2472Reputation: 2472Reputation: 2472Reputation: 2472Reputation: 2472Reputation: 2472Reputation: 2472Reputation: 2472
Quote:
Originally Posted by wegadnie View Post
Hi,

I don't know why i has this problem but it's really Urgent so please help me out.
On my server in /home folder, the security right on all user home's folder has been changed
e.g:
drwx--x--x 3 user1 user ...
to
drwx--x--x+ 3 user1 user ...

and the result is no one can access my server via FTP as i've configured this server as FTP server. I don't know why it happens. I've executed some command that could change it back but no luck (chmod -R 711 /home/* or chown). I notice that user can not log in when their home folder got the "+" sign so what is it and how can i fixed this problem? Any idea is really appreciated.
Please note that this isn't urgent for anyone but you....please don't post things as urgent. We volunteer our time to help folks.........

In your /home folder, try putting things as 755 ("chmod 755 /home/*"). Don't know how you had it set before, but see if that works....
 
Old 11-03-2008, 09:50 AM   #3
wegadnie
Member
 
Registered: Oct 2007
Posts: 48

Original Poster
Rep: Reputation: 15
So sorry but it doesn't work. Only drwxr-xr-x has changed. The "+" symbol is still right beside the security right.
 
Old 11-03-2008, 10:06 AM   #4
monsm
Member
 
Registered: Feb 2005
Location: London, UK
Distribution: Gentoo
Posts: 568

Rep: Reputation: 37
Hmm, something else might be getting in the way here. SELinux?

Mons
 
Old 11-03-2008, 06:08 PM   #5
wegadnie
Member
 
Registered: Oct 2007
Posts: 48

Original Poster
Rep: Reputation: 15
I don't think the problem comes from SELinux. This is my home folder structure:

/home/student/userxxxx
/home/lecture/userxxxx

In each subfolder i have about 50-100 users. While /home/lecture/userxxxx has no change, only /home/student/userxxx has been changed. Any idea?
 
Old 11-03-2008, 06:20 PM   #6
sundialsvcs
Guru
 
Registered: Feb 2004
Location: SE Tennessee, USA
Distribution: Gentoo, LFS
Posts: 5,263

Rep: Reputation: 1085Reputation: 1085Reputation: 1085Reputation: 1085Reputation: 1085Reputation: 1085Reputation: 1085Reputation: 1085
Referring to info ls, section "What info is listed," I read:
Quote:
For a file with an extended access control list, a `+' character is listed. Basic access control lists are equivalent to the permissions listed, and are not considered an alternate access method.
Just as Microsoft Windows "outgrew" its MS-DOS underpinnings (where the only sense of "security" was a "Locked" flag...), Linux filesystems also "outgrew" the good ol' -rwxr--r-- permissions mask. Both of them adopted the notion of access control lists, as discussed (in the case of Linux) at man acl.

The Linux ACL implementation was designed to be aware that "applications which are not aware of the existence of ACLs, or that have no particular need to be so aware, must continue to work." This is why the ls command continues to present you with "that familiar set of flags," but with the "+" character to clue you that something beyond that is really going on.

Start with the getfacl command. (Thus suggests the all-knowing apropos acl ...) You need to see the entire set of access-controls that really apply to this file, "not just the mask." The reason why you don't understand why you're getting the "permission denied" message is that more than 'just the mask' is controlling the effective permissions to this file.

Now... the ACL feature was... shall we diplomatically say... "designed by committee."

So, "I am going to be very mean to you now," and invite you to read the man acl page and tell me if you understand a word of it. (If you do, I have a leather-bound copy of Robert's Rules of Order to give you.)

Last edited by sundialsvcs; 11-03-2008 at 06:24 PM.
 
Old 11-03-2008, 08:03 PM   #7
chrism01
Guru
 
Registered: Aug 2004
Location: Sydney
Distribution: Centos 6.5, Centos 5.10
Posts: 16,232

Rep: Reputation: 2024Reputation: 2024Reputation: 2024Reputation: 2024Reputation: 2024Reputation: 2024Reputation: 2024Reputation: 2024Reputation: 2024Reputation: 2024Reputation: 2024
Actually, there's a pretty good explanation here: http://www.linuxtopia.org/online_boo...5_ch-acls.html
 
Old 11-03-2008, 09:18 PM   #8
wegadnie
Member
 
Registered: Oct 2007
Posts: 48

Original Poster
Rep: Reputation: 15
Guy, this is newbie section and I'm just working with linux for a few months. Reading the man page is something we must do if we want to understand about the problem and how to deal with it in the future but for now i need some one could show me how to solve problem. Really appreciate you guys give your time to help me.

Thank sundialsvcs; chrism01: Now i know what is the problem as someone has modified file with ACL. One command can solve this problem. At least it works for me:
#setfacl --remove-all /home/* . Thanks again

Last edited by wegadnie; 11-03-2008 at 09:51 PM.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
scp permission denied but have write access linuxfia Linux - Software 5 08-14-2008 11:33 AM
bashrc file access permission denied swift_a2002 Linux - Software 12 02-27-2008 06:51 PM
How to Access /root in linux if it says permission denied!!!! sid_Linux Linux - Software 3 02-28-2007 08:05 AM
Folder Access Problems: Permission Denied piva.francesco Linux - Software 3 03-28-2006 12:11 AM
smbmount works but I get permission denied when access the drive jeickal Linux - Networking 0 12-17-2004 11:22 AM


All times are GMT -5. The time now is 12:21 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration