From nobody@FreeBSD.org  Tue Nov 27 10:06:16 2001
Return-Path: <nobody@FreeBSD.org>
Received: from freefall.freebsd.org (freefall.FreeBSD.org [216.136.204.21])
	by hub.freebsd.org (Postfix) with ESMTP id EBB3537B405
	for <freebsd-gnats-submit@FreeBSD.org>; Tue, 27 Nov 2001 10:06:15 -0800 (PST)
Received: (from nobody@localhost)
	by freefall.freebsd.org (8.11.6/8.11.6) id fARI6Fm71381;
	Tue, 27 Nov 2001 10:06:15 -0800 (PST)
	(envelope-from nobody)
Message-Id: <200111271806.fARI6Fm71381@freefall.freebsd.org>
Date: Tue, 27 Nov 2001 10:06:15 -0800 (PST)
From: Hendrik Scholz <hendrik@scholz.net>
To: freebsd-gnats-submit@FreeBSD.org
Subject: cvsup-mirror permission problem
X-Send-Pr-Version: www-1.0

>Number:         32336
>Category:       ports
>Synopsis:       cvsup-mirror permission problem
>Confidential:   no
>Severity:       non-critical
>Priority:       low
>Responsible:    jdp
>State:          closed
>Quarter:        
>Keywords:       
>Date-Required:  
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Tue Nov 27 10:10:00 PST 2001
>Closed-Date:    Sun Dec 9 09:14:31 PST 2001
>Last-Modified:  Sun Dec 09 09:15:36 PST 2001
>Originator:     Hendrik Scholz
>Release:        4.4-STABLE
>Organization:
NetUSE AG
>Environment:
FreeBSD donkey.lan.raisdorf.net 4.4-STABLE FreeBSD 4.4-STABLE #4: Wed Oct 24 17:34:47 CEST 2001     hscholz@donkey.lan.raisdorf.net:/usr/src/sys/compile/DONKEY  i386

>Description:
The net/cvsup-mirror port by default creates two new users: cvsup and cvsupin.
The update.sh script writes the files as ${cuser} which is cvsupin.
The cvsupd runs as cvsup. Due to the 750 permissions of the cvs directories (/home/ncvs/* by default) the user cvsup cannot change into these directories leading to the following error when trying to use the cvsupd:

[...]
Nov 27 18:45:54 dionysus cvsupd[792]: Cannot open "/usr/local/etc/cvsup/prefixes/FreeBSD.cvs/ports/audio/bladeenc/files/patch-ad,v": Permission denied
[...]
>How-To-Repeat:
Install the net/cvsup-mirror port, run /usr/local/etc/cvsup/update.sh to update your repositories and then try to access your server with
cvsup.
>Fix:
This could be fixed by adding the user cvsup to the cvsupin group in /etc/group.
The make_account() function in pkg-install should be modified to
issue 'pw groupmod cvsupin -m cvsup' if needed.
>Release-Note:
>Audit-Trail:
State-Changed-From-To: open->feedback 
State-Changed-By: jdp 
State-Changed-When: Tue Nov 27 12:12:04 PST 2001 
State-Changed-Why:  
You must have done something unusual when installing this port.  It 
is being used at least 100 different sites without any other reports 
of this problem.  The port contains an installation script 
"pkg-install" which is automatically executed at install time.  That 
script changes the permissions of the mirrored files so that they 
are readable by everybody.  Likewise, the update.sh script is 
careful to use a umask of 22 to avoid creating any unreadable files. 


Responsible-Changed-From-To: freebsd-ports->jdp 
Responsible-Changed-By: jdp 
Responsible-Changed-When: Tue Nov 27 12:12:04 PST 2001 
Responsible-Changed-Why:  
Maintainer of the port. 

http://www.FreeBSD.org/cgi/query-pr.cgi?pr=32336 
State-Changed-From-To: feedback->closed 
State-Changed-By: jdp 
State-Changed-When: Sun Dec 9 09:14:31 PST 2001 
State-Changed-Why:  
I haven't been able to reproduce this problem.  If the submitter is 
able to figure out what caused it on his system, I'll re-open the 
PR. 

http://www.FreeBSD.org/cgi/query-pr.cgi?pr=32336 
>Unformatted:
