Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

Blue

Proper dir perms in /var/adm/CSCOpx/files/rme/dcma/devfiles

It appears the device directories under /var/adm/CSCOpx/files/rme/dcma/devfiles have a watershed moment at the time an LMS 2.6 backup was restored into LMS 3.1. I'm wondering what the correct dir perms should be.

before Nov 29, 2008

drwxr-xr-x

after

drwxr-x---

3 REPLIES
Cisco Employee

Re: Proper dir perms in /var/adm/CSCOpx/files/rme/dcma/devfiles

Permissions just have to allow casuser read and write. However, for security reasons, you probably want to go with:

casuser:casusers 0640

Blue

Re: Proper dir perms in /var/adm/CSCOpx/files/rme/dcma/devfiles

Would the removable of the executable bit cause problem for the LMS web server navigating these dirs?

Can the overly lax perms be tightened in the restorebackup.pl script or elsewhere so it doesn't recur after another restore?

Cisco Employee

Re: Proper dir perms in /var/adm/CSCOpx/files/rme/dcma/devfiles

The executable bit on a directory means "allow search." Without this, you would not be able to enumerate a directory's contents. It's generally required if you want to allow read access to a directory. do not remove this.

The permissions should be restored exactly how they were when the backup was taken. We use "tar cfph" even on LMS 2.6. And we use xvhpf on restore.

184
Views
0
Helpful
3
Replies