[melodie]

Hi,

How come there are system logs under / instead of being wisely under /var/log as it should be ? Is it possible to change that ?

Why are thoses messages telling that the file system permissions are not right, and a bunch of things about what apps listen at which ports, also ?
Here is a copy of the file : http://meets.free.fr/files/dead.letter

Thanks,
Mélodie.

[don_crissti]

Why are thoses messages telling that the file system permissions are not right ?

First of all, it is not really "wrong permissions" but altered permissions that are considered potentially "insecure" by msec. The permission settings of root are different to those of msec and once you log in as root, certain permissions of files will be changed. Root has the right to read and write every file (except immutable files) while msec wants to set certain files to read-only status for security reasons. Thus, all files with 644 permission that basically should not have a 644 permission will be restored to the system-default 640 setting of msec.

As to your first question:
You have sendmail already installed, right ? Make sure it is configured to start at boot...
A dead.letter is created by the mailing system when it cannot deliver its mail messages. I don't get that dead.letter here...
(I have similar messages in /var/log/msec.log which is normal...) but Gotz Waschk from Mandriva says that

the file is created in the $HOME of the user trying to send the mail. So using / is OK as that's the home directory of daemons.

Please have a look here for more info on msec:

http://wiki.mandriva.com/en/Msec

regards,

Don

[melodie]

First of all, it is not really "wrong permissions" but altered permissions that are considered potentially "insecure" by msec. The permission settings of root are different to those of msec and once you log in as root, certain permissions of files will be changed.

Hi don_crissti,

I NEVER login as root. (At least never in graphical mode)

Root has the right to read and write every file (except immutable files) while msec wants to set certain files to read-only status for security reasons. Thus, all files with 644 permission that basically should not have a 644 permission will be restored to the system-default 640 setting of msec.

Allright, whatever : the "soup" of the system is not that much my concern anyhow, as long as it's secure enough.

As to your first question:
You have sendmail already installed, right ? Make sure it is configured to start at boot...

I don't know I'm not in Pclos Gnome right now. I'd like to check that.

A dead.letter is created by the mailing system when it cannot deliver its mail messages. I don't get that dead.letter here...

I don't get thoses in the Kde install... :-/

(I have similar messages in /var/log/msec.log which is normal...) but Gotz Waschk from Mandriva says that

the file is created in the $HOME of the user trying to send the mail. So using / is OK as that's the home directory of daemons.

Please have a look here for more info on msec:

http://wiki.mandriva.com/en/Msec

Ok, I'll take a look there. Thanks.

[melodie]

Hi,

I just looked, and it was not installed:

$ which sendmail
which: no sendmail in (/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin:/usr/games:/usr/lib/qt4/bin:/usr/lib/cnfbin:/usr/lib/cnfbin:/home/guest/bin:/usr/lib/cnfbin)

So now it installs procmail and sendmail. I'm going in the Centre Control, I can now see sendmail in the services, it's configured to be started at boot (default as I can see) so all seems ok.

I couldn't go throught the Mandriva doc, not enough motivation to read all that. As long as you say it's ok... else : don't the logs become too big or too numerous ? Is there a regulation of them ? (a limit to their number and or size ?)

Thanks.

[don_crissti]

else : don't the logs become too big or too numerous ? Is there a regulation of them ? (a limit to their number and or size ?)

Code: Select all

rpm -q --queryformat='%{DESCRIPTION}\n' logrotate

more details in /etc/cron.daily/logrotate and /etc/logrotate.conf...

[melodie]

else : don't the logs become too big or too numerous ? Is there a regulation of them ? (a limit to their number and or size ?)

Code: Select all

rpm -q --queryformat='%{DESCRIPTION}\n' logrotate

more details in /etc/cron.daily/logrotate and /etc/logrotate.conf...

Hi don_crissti,

I don't understand how to use this command line of your's, if it's meant to be used as is, or what.

Else, I solved the dead.letter problem, thanks to you ! But now it's a message to root, and I don't like it either, because I think an end user distribution should not occur headaches like that to people with few or no knowledge, particularly when security is involved.

So a little under is the message, and my question is : could you developers do something so that permissions are fixed the right way on all the files once and for all ?

Thanks !

Code: Select all

You have new mail in /var/spool/mail/root
[root@localhost ~]# cat /var/spool/mail/root
From root@localhost  Wed Jul  1 13:58:53 2009
Return-Path: <root@localhost>
Received: from localhost (localhost [127.0.0.1])
   by localhost (8.14.3/8.14.3) with ESMTP id n61BwrPo005081
   for <root@localhost>; Wed, 1 Jul 2009 13:58:53 +0200
Received: (from root@localhost)
   by localhost (8.14.3/8.14.3/Submit) id n61BwrCH004134
   for root; Wed, 1 Jul 2009 13:58:53 +0200
From: root <root@localhost>
Message-Id: <200907011158.n61BwrCH004134@localhost>
Date: Wed, 01 Jul 2009 13:57:52 +0200
To: root@localhost
Subject: [msec] *** Diff Check on localhost, mer jui  1 13:57:52 CEST 2009 ***
User-Agent: nail 11.25 7/29/05
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit


Security Warning: Change in Suid Root files found :
-       Newly added suid root file : /usr/bin/procmail

Security Warning: Changes in Sgid files found :
-       Newly added sgid file : /usr/bin/lockfile
-       Newly added sgid file : /usr/bin/procmail
-       Newly added sgid file : /usr/sbin/sendmail.sendmail

Security Warning: Change in World Writable Files found :
- No longer present writable file : /usr/share/doc/gtkdialog-0.7.20/examples
- No longer present writable file : /usr/share/doc/libapr_memcache0-0.7.0/test
- No longer present writable file : /usr/share/doc/mpg123-1.7.3/examples

Security Warning: the md5 checksum for one of your SUID files has changed,
maybe an intruder modified one of these suid binary in order to put in a backdoor...
- Checksum changed file : /usr/bin/chage
- Checksum changed file : /usr/bin/expiry
- Checksum changed file : /usr/bin/gpasswd
- Checksum changed file : /usr/bin/newgrp

Security Warning: There are modifications for port listening on your machine :
-  Opened ports : tcp        0      0 *:submission                *:*                         LISTEN      3593/sendmail: acce
-  Opened ports : tcp        0      0 *:smtp                      *:*                         LISTEN      3593/sendmail: acce
-  Opened ports : udp        0      0 *:bootpc                    *:*                                     2797/dhclient
-  Opened ports : udp        0      0 192.168.0.66:ntp            *:*                                     3154/ntpd
-  Opened ports : udp        0      0 localhost:ntp               *:*                                     3154/ntpd
-  Opened ports : udp        0      0 *:ntp                       *:*                                     3154/ntpd
-  Opened ports : udp        0      0 ::1:ntp                     *:*                                     3154/ntpd
-  Opened ports : udp        0      0 fe80::218:f3ff:fe0c:f27:ntp *:*                                     3154/ntpd
-  Opened ports : udp        0      0 *:ntp                       *:*                                     3154/ntpd
- Closed ports  : udp        0      0 *:32769                     *:*                                     5288/avahi-daemon:
- Closed ports  : udp        0      0 *:bootpc                    *:*                                     5025/dhclient
- Closed ports  : udp        0      0 *:5353                      *:*                                     5288/avahi-daemon:
- Closed ports  : udp        0      0 192.168.0.66:ntp            *:*                                     5442/ntpd
- Closed ports  : udp        0      0 localhost:ntp               *:*                                     5442/ntpd
- Closed ports  : udp        0      0 *:ntp                       *:*                                     5442/ntpd
- Closed ports  : udp        0      0 *:ntp                       *:*                                     5442/ntpd

From root@localhost  Wed Jul  1 13:58:55 2009
Return-Path: <root@localhost>
Received: from localhost (localhost [127.0.0.1])
   by localhost (8.14.3/8.14.3) with ESMTP id n61BwttB005084
   for <root@localhost>; Wed, 1 Jul 2009 13:58:55 +0200
Received: (from root@localhost)
   by localhost (8.14.3/8.14.3/Submit) id n61Bwsbm005043
   for root; Wed, 1 Jul 2009 13:58:54 +0200
From: root <root@localhost>
Message-Id: <200907011158.n61Bwsbm005043@localhost>
Date: Wed, 01 Jul 2009 13:57:54 +0200
To: root@localhost
Subject: [msec] *** Security Check on localhost, mer jui  1 13:57:54 CEST
 2009 ***
User-Agent: nail 11.25 7/29/05
MIME-Version: 1.0
Content-Type: text/plain; charset=iso-8859-1
Content-Transfer-Encoding: 8bit


Security Warning: World Writable files found :
- /tmp/.font-unix
- /tmp/.ICE-unix
- /tmp/.X11-unix

Security Warning: these home directory should not be owned by someone else or writable :
user=gdm(79) : home directory is group writable.
user=gdm(79) : home directory is group writable.

Permissions changes on system files:
Permissions incorrectes pour /var/log/cron/info : devraient �tre 640
Permissions incorrectes pour /etc/rc.d/init.d/netfs : devraient �tre 744
Permissions incorrectes pour /etc/rc.d/init.d/cdemud : devraient �tre 744
Permissions incorrectes pour /var/spool/mail : devraient �tre 2775
Permissions incorrectes pour /var/log/samba/cores/nmbd : devraient �tre 640
Permissions incorrectes pour /etc/rc.d/init.d/fuse : devraient �tre 744
Permissions incorrectes pour /etc/rc.d/init.d/acpid : devraient �tre 744
Permissions incorrectes pour /var/log/samba/cores : devraient �tre 755
Permissions incorrectes pour /etc/profile.d/10tmpdir.sh : devraient �tre 755
Permissions incorrectes pour /etc/profile.d/gvfs-bash-completion.sh : devraient �tre 755
Permissions incorrectes pour /etc/rc.d/init.d/network-up : devraient �tre 744
Permissions incorrectes pour /var/log/cron/errors : devraient �tre 640
Permissions incorrectes pour /etc/rc.d/init.d/partmon : devraient �tre 744
Permissions incorrectes pour /var/log/lpr/info : devraient �tre 640
Permissions incorrectes pour /etc/rc.d/init.d/harddrake : devraient �tre 744
Permissions incorrectes pour /var/log/daemons/info : devraient �tre 640
Permissions incorrectes pour /etc/rc.d/init.d/ntpd : devraient �tre 744
Permissions incorrectes pour /etc/rc.d/init.d/haldaemon : devraient �tre 744
Permissions incorrectes pour /var/log/daemons/errors : devraient �tre 640
Permissions incorrectes pour /etc/profile.d/20less.sh : devraient �tre 755
Permissions incorrectes pour /var/log/mail/errors : devraient �tre 640
Permissions incorrectes pour /etc/rc.d/init.d/sshd : devraient �tre 744
Permissions incorrectes pour /etc/profile.d/90ssh-askpass.csh : devraient �tre 755
Permissions incorrectes pour /etc/profile.d/10lang.csh : devraient �tre 755
Permissions incorrectes pour /var/log/gdm/:0.log.2 : devraient �tre 640
Permissions incorrectes pour /var/log/lpr/errors : devraient �tre 640
Permissions incorrectes pour /etc/profile.d/90ssh-client.sh : devraient �tre 755
Permissions incorrectes pour /etc/rc.d/init.d/cpufreq : devraient �tre 744
Permissions incorrectes pour /etc/rc.d/init.d/xfs : devraient �tre 744
Permissions incorrectes pour /etc/profile.d/10tmpdir.csh : devraient �tre 755
Groupe incorrect pour /�: devrait �tre adm
Permissions incorrectes pour /var/log/samba/cores/smbd : devraient �tre 640
Permissions incorrectes pour /etc/rc.d/init.d/kheader : devraient �tre 744
Permissions incorrectes pour /etc/profile.d/10inputrc.sh : devraient �tre 755
Permissions incorrectes pour /var/log/cups/error_log : devraient �tre 640
Permissions incorrectes pour /etc/rc.d/init.d/mandrake_everytime : devraient �tre 744
Permissions incorrectes pour /etc/profile.d/10inputrc.csh : devraient �tre 755
Permissions incorrectes pour /var/log/ConsoleKit/history : devraient �tre 640
Permissions incorrectes pour /var/log/news/news.err : devraient �tre 640
Permissions incorrectes pour /etc/rc.d/init.d/powernowd : devraient �tre 744
Permissions incorrectes pour /etc/rc.d/init.d/messagebus : devraient �tre 744
Permissions incorrectes pour /var/log/gdm/:0.log.1 : devraient �tre 640
Permissions incorrectes pour /etc/ssh/sshd_config : devraient �tre 644
Permissions incorrectes pour /var/log/gdm/:0.log.3 : devraient �tre 640
Permissions incorrectes pour /var/log/gdm/:0.log.4 : devraient �tre 640
Permissions incorrectes pour /etc/rc.d/init.d/oki4daemon : devraient �tre 744
Permissions incorrectes pour /var/log/news/news.crit : devraient �tre 640
Permissions incorrectes pour /var/log/cups/access_log : devraient �tre 640
Permissions incorrectes pour /etc/rc.d/init.d/functions : devraient �tre 644
Permissions incorrectes pour /root : devraient �tre 700
Permissions incorrectes pour /etc/profile.d/10lang.sh : devraient �tre 755
Permissions incorrectes pour /etc/rc.d/init.d/ip6tables : devraient �tre 744
Permissions incorrectes pour /etc/rc.d/init.d/network : devraient �tre 744
Permissions incorrectes pour /var/log/mail/warnings : devraient �tre 640
Permissions incorrectes pour /etc/profile.d/20less.csh : devraient �tre 755
Permissions incorrectes pour /etc/rc.d/init.d/mandrake_firstime : devraient �tre 744
Permissions incorrectes pour /etc/rc.d/init.d/udev-post : devraient �tre 744
Permissions incorrectes pour /etc/rc.d/init.d/netconsole : devraient �tre 744
Permissions incorrectes pour /etc/rc.d/init.d/mandi : devraient �tre 744
Permissions incorrectes pour /var/log/cron/warnings : devraient �tre 640
Permissions incorrectes pour /var/log/lpr/warnings : devraient �tre 640
Permissions incorrectes pour /var/log/mail/info : devraient �tre 640
Permissions incorrectes pour /var/log/ppp/connect-errors : devraient �tre 640
Permissions incorrectes pour /etc/rc.d/init.d/single : devraient �tre 744
Permissions incorrectes pour /var/log/kernel/info : devraient �tre 640
Permissions incorrectes pour /etc/rc.d/init.d/halt : devraient �tre 744
Permissions incorrectes pour /var/log/kernel/warnings : devraient �tre 640
Permissions incorrectes pour /usr/sbin/sendmail.sendmail : devraient �tre 2755
Permissions incorrectes pour /etc/rc.d/init.d/killall : devraient �tre 744
Permissions incorrectes pour /etc/rc.d/init.d/anacron : devraient �tre 744
Permissions incorrectes pour /etc/rc.d/init.d/sendmail : devraient �tre 744
Permissions incorrectes pour /etc/rc.d/init.d/msec : devraient �tre 744
Permissions incorrectes pour /var/log/gdm/:0.log : devraient �tre 640
Permissions incorrectes pour /etc/rc.d/init.d/iptables : devraient �tre 744
Permissions incorrectes pour /var/log/news/news.notice : devraient �tre 640
Permissions incorrectes pour /var/log/gdm/:20.log : devraient �tre 640
Permissions incorrectes pour /etc/rc.d/init.d/dm : devraient �tre 744
Permissions incorrectes pour /dev : devraient �tre 755
Permissions incorrectes pour /var/log/kernel/errors : devraient �tre 640
Permissions incorrectes pour /etc/profile.d/90ssh-askpass.sh : devraient �tre 755
Permissions incorrectes pour /var/log/daemons/warnings : devraient �tre 640

These are the ports listening on your machine :
Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address               Foreign Address             State       PID/Program name   
tcp        0      0 *:submission                *:*                         LISTEN      3593/sendmail: acce
tcp        0      0 *:smtp                      *:*                         LISTEN      3593/sendmail: acce
udp        0      0 *:bootpc                    *:*                                     2797/dhclient       
udp        0      0 192.168.0.66:ntp            *:*                                     3154/ntpd           
udp        0      0 localhost:ntp               *:*                                     3154/ntpd           
udp        0      0 *:ntp                       *:*                                     3154/ntpd           
udp        0      0 ::1:ntp                     *:*                                     3154/ntpd           
udp        0      0 fe80::218:f3ff:fe0c:f27:ntp *:*                                     3154/ntpd           
udp        0      0 *:ntp                       *:*                                     3154/ntpd           

From root@localhost  Wed Jul  1 13:58:55 2009
Return-Path: <root@localhost>
Received: from localhost (localhost [127.0.0.1])
   by localhost (8.14.3/8.14.3) with ESMTP id n61BwtWK005087
   for <root@localhost>; Wed, 1 Jul 2009 13:58:55 +0200
Received: (from root@localhost)
   by localhost (8.14.3/8.14.3/Submit) id n61Bwthx005059
   for root; Wed, 1 Jul 2009 13:58:55 +0200
Date: Wed, 1 Jul 2009 13:58:55 +0200
Message-Id: <200907011158.n61Bwthx005059@localhost>
From: root@localhost (Anacron)
To: root@localhost
Subject: Anacron job 'cron.daily'

error: lstat() of directory /var/catman/X11R6/cat? failed: No such file or directory
run-parts: /etc/cron.daily/tmpwatch exited with return code 1

Code: Select all

* Permissions incorrectes pour /var/log/cron/info : devraient �tre 640

Code: Select all

means "incorrect permissions for () : should be ()

Just one more thing : this is a version meant to do (to try to do should I actually say) a remaster to french, so just incase, I'll install it from remaster if I happen to succeed, and start using it more or less daily with a real account, so see how it acts, on the security warnings point of view.

Thanks very much again.

[don_crissti]

I don't understand how to use this command line of your's, if it's meant to be used as is, or what.

Just run it in terminal...
This is the output:

Code: Select all

Logrotate is designed to ease administration of systems that generate
large numbers of log files. It allows automatic rotation, compression,
removal, and mailing of log files. Each log file may be handled daily,
weekly, monthly, or when it grows too large.

which I think answers your question:

don't the logs become too big or too numerous ? Is there a regulation of them ?

Next:

But now it's a message to root, and I don't like it either, because I think an end user distribution should not occur headaches like that to people with few or no knowledge, particularly when security is involved.

Logging is a natural (and useful) thing under linux. Why does root get those mail messages ? Well... :

If you run a command in cron and do not redirect stdout and stderr, they will be mailed to whoever runs cron.

If you want to transform it into something more similar to windows just disable the log daemons and all the mailing stuff... (I wouldn't do that though) I don't understand why this would be such a headache... All distros have it, it's a mechanism that warns you when something is not right (or terribly wrong):

The system sends you a warning note about something that looks odd or illegal from the point of view of the system logic.

As to

could you developers do something so that permissions are fixed the right way on all the files once and for all ?

I no longer contribute/develop for PCLinuxOS. Nevertheless, this is what I think:
Yes, some of those files have wrong permissions to start with and it's because those permissions are set in the spec file of the parent package (in the %files section). Correcting the permissions in the spec file would be the best thing to do and would certainly decrease the number of warnings. However, this matter should be addressed by those who are very familiar with the right permissions of certain files. I'm not one of them...

[HarzVieh]

Logrotate is designed to ease administration of systems that generate
large numbers of log files. It allows automatic rotation, compression,
removal, and mailing of log files. Each log file may be handled daily,
weekly, monthly, or when it grows too large.

I am developing paranoja here somehow.. but is it not a back door for a spy..
did I read here somewhere that thumbs saved of all pictures I watch..
(all the same.. just puzies.. )

[don_crissti]

From the other thread:

1.

By the way, is there anything you could do or advise doing, to prevent log files from taking all the place in the system, as time goes ? And what about that root mail ? That really annoys me, because I don't really know what to do with the explanation you gave me the other day, except that now it's at it's right place in /var/spool/mail or so, and no more as a dead.letter

I already told you about logrotate and what it does (it deals with the logs):

Logrotate is designed to ease administration of systems that generate large numbers of log files. It allows automatic rotation, compression, removal, and mailing of log files.

A "default" installation with automatic partitioning will write the logs in /var/log/ which is part of /. Under some circumstances, logfiles have the potential to take up a lot of storage space thus filling / to maximum capacity which is not good at all. Logrotate helps prevent against this situation from happening but it's not a 100% guarantee. In the real world you could create a separate partition for /var thus isolating it from / and potentially running / out of available disk space.

All you have to do is read on the matter... If you don't like what logrotate does, feel free to write your own script to clean logs and place it in cron.

2.

The mail to root saying permissions are not good, or are good, or whatever according to one system part point of view or the other, and theses warnings about what listen to what ports... isn't that just annoyance ?

/Edit : I just de-selected the envoice of mail to root or on the desktop, in the security area in Control Center. I may change it back later, with more informations about this feature.

Exactly...
As I already told you, read further on msec and use /usr/sbin/msecgui to change the default settings. If you disable msec you should no longer get any of those messages... but you also have the option to have the MSEC tool enabled and just disable the emailing thingie...
I really don't understand what seems to be your problem... it's only a matter of using a GUI app and checking/un-checking the options that suit you better...

[melodie]

Hello,

What bothers me is not the messages themselves, but the fact that I don't know what to do about their informational content. My aim is to make remasters that I can spread, so that the french speaking people know more about PCLinuxOS. They really don't know it, for most of them, and many french speaking people don't use english at all also.

I do my best, but english is not my language, and sometimes, technics +english is a combination that can become a little harsh for me (it's been since the beginning, and I go throught, thanks to the help of people on the forums !)

Now you tell me it's something you don't have in charge, and that it is a PCLos fact,

no longer contribute/develop for PCLinuxOS. Nevertheless, this is what I think:
Yes, some of those files have wrong permissions to start with and it's because those permissions are set in the spec file of the parent package (in the %files section). Correcting the permissions in the spec file would be the best thing to do and would certainly decrease the number of warnings. However, this matter should be addressed by those who are very familiar with the right permissions of certain files. I'm not one of them...

so I may go to main forum and open a thread about that to see what comes out. Just I didn't notice it in the Kde version, so I will take a closer look there.

Thanks, I may come back later when I will have analized your answers more in detail.

/about the thumbnails : if tmpfs mounted on /tmp works well, it's possible to put a symlink in your home, that points to /tmp.

/Edit : I've gone on one install I did with the official KDE version as a start, and looked for mail from root : no mails from root. I've take a look a /etc/logrotate.conf and compared both configuration files, they look about the same, and the logs are numerous in the KDE version too. I'll have a look at the same config file in other distributions, to see how they configure it elsewhere. (why 4 logs for archive, and what happens with the rotation when you fix a limit to the size of the current archive ?)

(no need to tell me logs are important : I know almost only GNU&Linux, just do they have to be big and kept with 4 to 5 logs behind ?)

[melodie]

Hi,

I am trying the last Zen mini, and if some parts in this message don't bother me, as they refer probably to the preceeding stage, when the files were in the Live CD, some other parts present the same problem.

Do you think I should I bring this topic to the main forum ? (Or not ?)
http://pclinuxos.pastebin.com/m1ece073b

Bye the way, a little screen

http://melodie.tyruiop.org/captures/Green-Zen-mini.png

[melodie]

Hi,

I'm now in a classic KDE PCLinuxOS, fully update, and started a few ls -l on the same files as where the mail for root in Zen Mini complains about wrong permissions. I did a netstat command too to see what ports and so, to try compare:

[root@localhost log]# ls -l /var/log/cron/info
-rw------- 1 root root 901 Jul 19 11:01 /var/log/cron/info
[root@localhost log]# ls -l /etc/rc.d/init.d/netfs
-rwxr--r-- 1 root root 6426 Oct 9 2008 /etc/rc.d/init.d/netfs*
[root@localhost log]# ls -l /etc/rc.d/init.d/dkms
-rwxr--r-- 1 root root 5628 Jun 25 2007 /etc/rc.d/init.d/dkms*
[root@localhost log]# ls -l /var/spool/mail
total 0
[root@localhost log]# ls -l /var/log/explanations
-rw-r----- 1 root adm 1630 Jul 19 10:25 /var/log/explanations
[root@localhost log]# ls -l /usr/sbin/sendmail.sendmail
ls: /usr/sbin/sendmail.sendmail: No such file or directory
[root@localhost log]# ls -l /etc/rc.d/init.d/msec
-rwxr-xr-x 1 root root 1607 Apr 25 23:48 /etc/rc.d/init.d/msec*
[root@localhost log]# ls -l /var/log/Xorg.0.log
-rw-r--r-- 1 root root 21619 Jul 19 10:25 /var/log/Xorg.0.log
[root@localhost log]# net
net net_applet net_monitor netcat netprofile netreport netscsid netstat
[root@localhost log]# nets
netscsid netstat
[root@localhost log]# netstat -tupan | grep LISTEN
[root@localhost log]# netstat -tupan
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 192.168.0.64:37942 91.121.101.160:80 ESTABLISHED 4093/mplayer
udp 0 0 0.0.0.0:50448 0.0.0.0:* 2873/avahi-daemon:
udp 0 0 0.0.0.0:68 0.0.0.0:* 2908/dhclient
udp 0 0 0.0.0.0:5353 0.0.0.0:* 2873/avahi-daemon:
[root@localhost log]#

from my pastebin : Wrong permissions of /etc/rc.d/init.d/msec: should be 744

there above, it's one that has not the 744 permissions either.

Else : just after boot I opened a root terminal, and the mail command replied "no mail for root". I've gone in the logs, no significant error in the logs.

I had talked about one week ago about remastering to french and making a gnome version starting from the Kde official version, then someone told me I might want to check about what's going on at Gnome team before considering doing that. That's what I'm doing. Thanks to you, I've solved a pair of problems allready. I'm still not sure that the permissions be wrong in the official version, even if there is no mail service configured to warn root.

What do you think about that ? And at the end, who develops Gnome community remaster actually ? The 2009-2 didn't come out of nowhere did it ?

[melodie]

Hello,

I thought I would compare and configure PCLOS official with the same events, install Sendmail and start it at boot, msec same. (I finally went through the doc you pointed me at, at Mandi's wiki, on day I was rested enought).

After the first reboot of PClos KDE, the only message for root is this one:

# cat /var/spool/mail/root
From root@localhost Tue Jul 21 11:17:23 2009
Return-Path: <root@localhost>
Received: from localhost (localhost [127.0.0.1])
by localhost (8.14.3/8.14.3) with ESMTP id n6L9HNq7005248
for <root@localhost>; Tue, 21 Jul 2009 11:17:23 +0200
Received: (from root@localhost)
by localhost (8.14.3/8.14.3/Submit) id n6L9HNk2005186
for root; Tue, 21 Jul 2009 11:17:23 +0200
Date: Tue, 21 Jul 2009 11:17:23 +0200
Message-Id: <200907210917.n6L9HNk2005186@localhost>
From: root@localhost (Anacron)
To: root@localhost
Subject: Anacron job 'cron.daily'
Status: RO

error: lstat() of directory /var/catman/X11R6/cat? failed: No such file or directory
run-parts: /etc/cron.daily/tmpwatch exited with return code 1

I still don't know if posting about this subject at the main forum would have any interest for the development of the Gnome version.
Thanks to tell me about that ?

[don_crissti]

I still don't know if posting about this subject at the main forum would have any interest for the development of the Gnome version.
Thanks to tell me about that ?

melodie,

I already told you almost everything I know on this subject (msec, mailing to root and so on...). I don't know what else to say...
I don't use KDE so I have no idea why you don't get any root mail there... I don't plan to try it out just to find out as I have other things to do. But we are talking about software here so there's certainly an explanation.

After the first reboot of PClos KDE

You're trying it after the first boot ? Come on melodie... Use the damn thing for at least two weeks and then check your logs... Only then jump to conclusions. FYI, here is someone who has the same problem on PCLOS KDE, check their forum:

http://www.pclinuxos.com/index.php?option=com_smf&Itemid=26&topic=60072.0

[melodie]

After the first reboot of PClos KDE

You're trying it after the first boot ? Come on melodie... Use the damn thing for at least two weeks and then check your logs... Only then jump to conclusions.

Hum ! Hi don-crissti !


After first reboot that I had changed the configuration to look like the one in Gnome community version !

So, now my KDE version has sendmail installed (which was not at the beginning, and explains why no mail was waiting for root), configured to start at boot, msec configured to start in the services section of CCP also, and tried to firewall as well.

Messages from root where then very tiny.

You could not say I would have more and bigger messages after 2 weeks use in a row, because I use the KDE version as much as the Gnome version, which is a few days in a row, and only to prepare them to become remasters available for french speaking only (or almost only) people.

You can see them here:
http://melodie.tyruiop.org/

PCLinuxOS-2009-Gnome-fr-16-Juil.iso
PCLinuxOS-2009-Gnome-fr-16-Juil.iso.md5.txt
README-PCLOS-Gnome-fr-16-Juil

...

pclinuxos2009-27-Juin-fr_FR.iso
pclinuxos2009-27-Juin-fr_FR.iso.md5.txt

FYI, here is someone who has the same problem on PCLOS KDE, check their forum:

http://www.pclinuxos.com/index.php?option=com_smf&Itemid=26&topic=60072.0

Thanks a lot ! I'll be running back there (on mouse back ! ^^)