I was in a data directory (not a system directory) when I typed the command:
I was in /app/datatel/coll18/coll18_live/apphome
when I typed
Code:
chown -R / datatel
when I should have typed
Code:
chown -R ./ datatel
I was attempting to change owner under the apphome directory but with my syntax error I changed the owner under root. I stopped the command before it completely disrupted the system.
I was able to set a number of the ownerships back to what I am think they should be and the system is running, rebooting, and getting backups.
Most of the damage was done under the var directory ALSO the /home ownership is still in question. Should it be root?
Thank you for posting some responses!
---------- Post updated at 09:55 AM ---------- Previous update was at 09:51 AM ----------
Code:
ksh: 1167506 Quit(coredump)
I cannot say definetly is this is showing up since the chown command - I believe so.
I am not the Unix Administrator so I usually do not take not of these system files.
---------- Post updated at 10:11 AM ---------- Previous update was at 09:55 AM ----------
I apoligize... I am new to this forum:
The exact command I typed when I was in
Code:
pwd
/app/datatel/coll18/coll18_live/apphome/
was
Code:
find . -name "*" | xargs chown datatel
When I should have typed
[code]
find ./ -name "*" | xargs chown datatel
The list was too long to chown using a recurrsive so I used the xargs.
My previous post of
Code:
chown -R datatel
was incorrect. That was the command I had entered prior to using the xargs.
I do not have the history.
I did not log off or reboot until I was sure I was able to log in. As mentioned earlier I had issues with the /home directory. Root user could not log in.
I was able to go to the security directory and change the profile file to redirect roots home directory to / instead of /home/root and then I was able to log in.
I am now trying to confirm the ownership of the files I have changed.
Thank you to all that have been responding.
---------- Post updated at 10:13 AM ---------- Previous update was at 10:11 AM ----------
Yes, I was root at the time I executed this command
---------- Post updated at 10:14 AM ---------- Previous update was at 10:13 AM ----------
Quote:
Originally Posted by dukessd
On my only remaining 5.3 box at TL08 I got this:
Code:
/home/root # cd /
/ # ls -l
total 23132
drwxr-x--- 2 root audit 256 18 Dec 2008 audit
lrwxrwxrwx 1 bin bin 8 18 Mar 2010 bin -> /usr/bin
-rw-r--r-- 1 root system 6067 08 Aug 18:09 bosinst.data
drwxrwxr-x 8 4000 4000 2048 28 Apr 2008 cdrom
-rw-r--r-- 1 root system 13393920 05 Jun 2009 core
drwxr-xr-x 2 root system 256 19 Jun 2009 db2bkups_new
drwxrwxr-x 5 root system 8192 08 Dec 18:16 dev
drwxr-xr-x 6 root system 256 28 May 2009 .dt
-rwxr-xr-x 1 root system 3970 28 May 2009 .dtprofile
drwxr-xr-x 15 esaadmin system 4096 18 Dec 2008 esa
drwxr-xr-x 28 root system 12288 08 Dec 18:16 etc
drwxr-xr-x 14 bin bin 4096 12 Apr 2011 home
-rw-r--r-- 1 root system 10505 08 Aug 18:09 image.data
lrwxrwxrwx 1 bin bin 8 18 Mar 2010 lib -> /usr/lib
drwx------ 2 root system 256 18 Mar 2010 lost+found
drwxr-xr-x 153 bin bin 12288 04 Jul 12:17 lpp
drwxr-xr-x 2 root system 256 19 Jun 2009 lv00_fs
drwxr-xr-x 3 root system 256 26 Jan 2009 mkcd
drwxr-xr-x 3 bin bin 256 27 Sep 23:51 mnt
drwxr-xr-x 13 root system 4096 18 Mar 2010 opt
dr-xr-xr-x 1 root system 0 08 Dec 18:17 proc
-rw-r--r-- 1 root system 36 18 Dec 2008 .rhosts
drwxr-xr-x 3 bin bin 256 18 Dec 2008 sbin
-rw------- 1 root system 1360 29 May 2009 .sh_history
drwxrwxr-x 3 root system 256 18 Dec 2008 .SPOT
drwxrwxr-x 2 root system 256 18 Dec 2008 tftpboot
drwxrwxrwt 15 bin bin 8192 08 Dec 18:16 tmp
drwxr-xr-x 2 root system 4096 29 May 2009 TT_DB
lrwxrwxrwx 1 bin bin 5 18 Mar 2010 u -> /home
lrwxrwxrwx 1 root system 21 18 Mar 2010 unix -> /usr/lib/boot/unix_64
drwxr-xr-x 43 bin bin 4096 18 Mar 2010 usr
drwxr-xr-x 30 bin bin 4096 26 Oct 2010 var
-rw-rw-r-- 1 root system 3 28 May 2009 .wmrc
-rw------- 1 root system 123 28 May 2009 .Xauthority
HTH
Thank you for posting the listing. I will use it to compare to what I have changed the ownership to.
---------- Post updated at 10:34 AM ---------- Previous update was at 10:14 AM ----------
thank you dukessd for posting the listing.
I compared the ownership to the what I changed the ownership back to in the root directory.
I based a number of the ownership based on the group that was set on the file (because I had not changed these or the permissions).
DUKESSD listing for home directory has an owner of bin.
I changed my home directory owner to bin and this caused complete chaos. Users were kicked off the system (at that point the system was still functioning) and the root user could not log in. Certain commands would hang for example
Code:
ls -al
would cause the system to hang but
Code:
ls -l
would work.
I could not do a
Code:
pwd
Once I changed the
Code:
/etc/passwd
entry for the home directory of root to be
Code:
/
I was able to log in as root and I changed the permission back to user datatel on the home file only because when it was user datatel we would log in and process command.
I an now concerned about having to change the owner back to bin on the home directory.
Hi all,
what happens if i have a service running as root?
if it is exploited what would happen?
can a hacker actually becomes a hacker and screw up my whole box?
thanks (1 Reply)
From within a directory, how do I determine whether I have write permission for it.
test -w pwd ; echo ?
This doesn't work as it returns false, even though I have write permission. (4 Replies)
Hi all,
We have some files are under 744 permissions and the the owner is say owner1 and group1.
Now we have another user owner2 of group2, owner2 can remove files of the owner1 and the permission of those files are 744, unix admin told us he did some config at his side so we can do that.
... (14 Replies)
hai,
I am new to Unix, I have a requirement to display owner name , directory or sub directory name, who's owner name is not equal to "oasitqtc".
(here "oasitqtc" is the owner of the directory or sub directory.)
i have a command (below) which will display all folders and sub folders, but i... (6 Replies)
Would the owner as listed , be the one who made the directory in the first place. when any one could use chown in a script.
I do not know where this directory came form or who made it. And am attempting to just find out more info on it.
what could i use to find its origins and its why does it... (3 Replies)
Hi,
I'm the root user on my computer, but I'm writing a script that does a lot of file handling. Every time I create a file or directory it automatically requires root privileges. Is there a way I can just create a file that the user can access without a password?
For example in my script I... (20 Replies)
Hi.
My example:
I have a filesystem /log. Everyday, log files are copied to /log. I'd like to set owner and permission for files and directories in /log like that
chown -R log_adm /log/*
chmod -R 544 /log/*It's OK, but just at that time. When a new log file or new directory is created in /log,... (8 Replies)
Hi Team,
Am a newbie to Unix. As I would like to see the Server Name,Owner Name ( not numeric form), Group Name ( not numeric ID), ROOT path.
I would like to send this list as an attachment to my personal mail. Can any one please help me out to to resolve this .
Here is the sample result... (6 Replies)
12-12-2011
