Schedule An Immediate Check - I have rtfm and stfw no help

[Carroll, Jim P [Contractor]]

I wasn't too keen on the notion of adding 'nobody' to 'nagiocmd'.  Having
said that, let's move forwards.

To illustrate which usernames should be a member of 'nagiocmd':

$ groups apache nagios
apache : apache nagiocmd
nagios : nagios nagiocmd

I also noticed you have the wrong perms on /usr/local/nagios/var/rw -- try
this:

$ chmod 2770 /usr/local/nagios/var/rw
$ ls -ld /usr/local/nagios/var/rw
drwxrws---    2 nagios   nagiocmd     4096 Feb  7 11:44
/usr/local/nagios/var/rw

You must have done a "chmod 2760" on the 'rw' directory.  You need mode
2770.

Do all this, then restart nagios.  Then do a:

  ls -l /usr/local/nagios/var/rw

and see what nagios.cmd has for permissions.

Everything should be good to go at this point.

jc

> -----Original Message-----
> From: Michael W. Oliver [mailto:michael at gargantuan.com]
> Sent: Friday, February 07, 2003 7:52 PM
> To: nagios-users at lists.sourceforge.net
> Subject: Re: [Nagios-users] Schedule An Immediate Check - I have rtfm
> and stfw no help
> 
> 
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> 
> On Friday, February 07, 2003 12:42, Michael W. Oliver wrote:
> > more information...
> >
> > # ls /usr/local/nagios/var/rw
> > total 2
> > drwxrwS---  2 nagios  nagiocmd  512 Feb  5 15:11 ./
> > drwxrwxr-x  4 nagios  nagios    512 Feb  7 12:41 ../
> > prw-rw----  1 nagios  nagiocmd    0 Feb  5 15:11 nagios.cmd|
> >
> > # grep nagiocmd /etc/group
> > nagiocmd:*:55554:nagios,nobody
> >
> > Now, I see in the 'SOLVED' reply that the 'nagios.cmd' file 
> was created
> > by the Nagios process with nagios:nagios ownership, but mine isn't
> > created that way.  As you can see above, my nagios.cmd file 
> is created
> > with
> > nagios:nagiocmd ownership.  You can also see that 'nobody' 
> is part of the
> > 'nagiocmd' group, which _should_ give 'nobody' rw access to the
> > nagios.cmd file.  Even so, I still receive that error when trying to
> > execute a command from the browser.  BAH!
> >
> > In addition, in the 'SOLVED' reply, it looks like the user 
> 'nobody' was
> > added to the 'nagios' group, effectively eliminating the 
> need for the
> > 'nagiocmd' group.  Isn't this insecure, putting the 
> 'nobody' user in the
> > 'nagios' group, effectively giving that user permission to 
> everything
> > that Nagios has permission to?  I was under the impression 
> that the whole
> > purpose of creating the new group was to limit the access 
> of the 'nobody'
> > user.
> >
> > What am I missing?  Thanks!
> >
> > --
> <snip>
> 
> If there is anyone that can shed some light on why this isn't 
> working, I 
> would greatly appreciate it.
> 
> - -- 
> - 
> --------------------------------------------------------------
> ----------
>        Michael W. Oliver, CCNP | 
>          IPv6 & FreeBSD mizark | "The tree of liberty must be 
> refreshed
>         michael at gargantuan.com |   from time to time with the blood of
> http://michael.gargantuan.com/ |   patriots and tyrants."
>            (via IPv4 and IPv6) |     - President Thomas Jefferson
> IPv6 ASPathTree, Looking Glass |
> - 
> --------------------------------------------------------------
> ----------
> 
> 
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.2.1 (FreeBSD)
> 
> iD8DBQE+RGK6sWv7q8X6o8kRAvusAJoD6I35uvAPYGl/WphHSXamIfqpmQCfZJN0
> O4sl6LEp/Vmg2IK2PA7L2Uk=
> =38CK
> -----END PGP SIGNATURE-----
> 
> 
> 
> -------------------------------------------------------
> This SF.NET email is sponsored by:
> SourceForge Enterprise Edition + IBM + LinuxWorld = Something 2 See!
> http://www.vasoftware.com
> _______________________________________________
> Nagios-users mailing list
> Nagios-users at lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/nagios-users
> 


-------------------------------------------------------
This SF.NET email is sponsored by:
SourceForge Enterprise Edition + IBM + LinuxWorld = Something 2 See!
http://www.vasoftware.com