file system permission is set to to read and write only

Gflames · 12-14-2013, 05:03 PM

trying to improve my file permission security I typed the following command

#find / \( -type f -not -perm 0600 -exec chmod 0600 '{}' ';' \) -or \( -type d -not -perm 0700 -exec chmod 0700 '{}' ';' \)
I have tried changing the file permission settings of every file on the system to 0777,but still cant login using the X window and am failing to login as root user even in CMI mode
Am using Fedora15

astrogeek · 12-14-2013, 05:52 PM

Quote:

Originally Posted by Gflames

trying to improve my file permission security I typed the following command

#find / \( -type f -not -perm 0600 -exec chmod 0600 '{}' ';' \) -or \( -type d -not -perm 0700 -exec chmod 0700 '{}' ';' \)
I have tried changing the file permission settings of every file on the system to 0777,but still cant login using the X window and am failing to login as root user even in CMI mode
Am using Fedora15

I'll refrain from any outright sarcasm (we've all done things we wish we hadn't!), but why would you think that would improve security in the first case?

So let's start with, "Don't do that!".

Because you did this for the entire filesystem, your best move would probably be to reinstall. Otherwise you will likely be stumbling over permission problems for a long time into the future and trying to sort them out individually will exhaust you and everyone on the forums!

I am not a Fedora user, but I think Fedora 15 is ancient as well, so maybe restart with a newer version. And read up on GNU/Linux filesystem basics and security along the way.

rknichols · 12-14-2013, 06:04 PM

Gosh, after making every program in the system non-executable, I wonder why it wouldn't run.

In all likelihood, full recovery will only be possible by re-installing. What you can try, though, is to boot from the installation medium in rescue mode (I presume that's how you've been trying to fix things), mount your full file system tree starting with the root on some temporary directory, and then try restoring the permissions thus:

Code:

rpm --root /mnt/tmpdir --setperms -a

That should restore the permissions on all files and directories that are owned by any package, but will not affect anything that any program created later when run, which of course would include all of your personal files.

As I indicated at the start, massive permission mixups are generally considered unrecoverable unless you have a complete backup. Even if you get the system to run again, you will find yourself continually running into strange problems caused by incorrect permissions (to say nothing of the security implications of all those mode 777 files you have now).

berndbausch · 12-14-2013, 06:30 PM

Quote:

Originally Posted by Gflames

I thought i was improving my files permission security by typing
#find / \( -type f -not -perm 0600 -exec chmod 0600 '{}' ';' ) -or \( -type d -not -perm 0700 -exec chmod 0700 '{}' ';' )
The system was down until
I tried to change the file permission of every file on the system to 0777, but now I cant login using the X-window neither am I able to run programs as a root
I am using Fedora 15

The find command above does the following:

any regular file will be set to read/write by root only. Nothing can be executed anymore, even by root.
any directory willbe set to read/write/execute by root only. Nobody but root can list any directory, create files in them or cd to them.

The easiest way to repair this is reinstallation. If there is some data you need to recover first, use a live DVD. Any live DVD, not only Fedora, is applicable.

chrism01 · 12-23-2013, 06:31 PM

You could try these cmds first http://www.cyberciti.biz/tips/reset-...ermission.html
If that doesn't work, re-install and DON'T fool around with settings like that again

Changing individual dirs/files that you understand completely is one thing, but blanket changes WILL break stuff, as you've discovered.

PS You could look into this later http://bastille-linux.sourceforge.net/