What r the correct perms for SW in /usr/local ?
I have been struggling for the past few days to get Together/J for Linux
installed on a Debian potato box. Together/J is pure-java UML-modelling
tool (and a free version can be downloaded from
<http://www.togethersoft.com>).
I installed version 3.2 of the SW in /usr/local/uml/Together on my
potato system but then noticed that the program launcher shell script
(/usr/local/uml/Together/bin/Together.sh) would only launch the program
for the root user. Anyone else would see the splash screen come up and
the program would get the following exception(s):
@phoenix:[/usr/local/uml/Together/bin] ./Together.sh
map failed
map failed
map failed
map failed
map failed
java.lang.NullPointerException
at COM.objectspace.jgl.HashMap.put(Compiled Code)
at zbss.a(Compiled Code)
at zahs.a(Compiled Code)
at zagg.<init>(Compiled Code)
at com.togethersoft.together.impl.uiSystem.WorkspaceManagerImpl.init(Compiled Code)
at zazz.startup(Compiled Code)
at com.togethersoft.together.impl.application.AddinLoaderImpl.startup(Compiled Code)
at com.togethersoft.together.impl.application.ApplicationImpl.init(Compiled Code)
at com.togethersoft.together.impl.application.ApplicationImpl.run(Compiled Code)
at com.togethersoft.together.Main.main(Compiled Code)
Exception occurred during event dispatching:
java.lang.NullPointerException
at com.togethersoft.together.impl.uiSystem.WorkspaceManagerImpl.hidePopupMenu(Compiled Code)
at com.togethersoft.together.impl.windowSystem.IdeDialogImpl.ungrabPopupMenu(Compiled Code)
at com.togethersoft.together.impl.windowSystem.IdeDialogImpl.dispose(Compiled Code)
at zv2.actionPerformed(Compiled Code)
The only way around the problem for non-root users was to create a new
group (javauser), chgrp -R javauser /usr/local/uml/Together, and then
add myself to that group javauser. The permissions before this fix were
sth like:
@phoenix:[/usr/local/uml/Together] dir
total 19076
drwxr-sr-x 13 root staff 1024 Mar 21 21:20 ./
drwxrwsrwx 3 root staff 1024 Mar 21 21:19 ../
drwxrwxr-x 6 1002 staff 1024 Mar 21 21:44 bin/
-rw-rw-r-- 1 1002 staff 5 Mar 12 13:29 buildnum.txt
drwxrwx--x 2 1002 staff 1024 Mar 21 21:28 config/
drwxr-xr-x 6 1002 staff 1024 Mar 12 13:27 doc/
drwxrwxr-x 7 1002 staff 1024 Mar 12 13:28 help/
drwxr-xr-x 6 1002 staff 1024 Mar 12 13:29 lib/
drwxrwxr-x 2 1002 staff 1024 Mar 12 13:29 license/
drwxr-xr-x 4 1002 staff 1024 Mar 12 13:28 modules/
drwxrwxr-x 2 1002 staff 1024 Mar 12 13:29 myprojects/
drwxrwxr-x 2 1002 staff 1024 Mar 12 13:27 out/
-rw-rw-r-- 1 1002 staff 17934 Mar 12 13:29 readme.html
drwxr-xr-x 3 1002 staff 1024 Mar 12 13:28 samples/
drwxrwxr-x 2 1002 staff 1024 Mar 12 13:29 source/
Which, finally, leads to my question: what should the correct
permissions be of an application/software installed in /usr/local ?
For instance, I have noticed that the directory in which I have
installed netscape-4.72 (from tarball) has some weird permissions:
@phoenix:[/usr/local] dir netscape/
total 24578
drwxr-sr-x 8 root staff 1024 Feb 26 17:23 ./
drwxrwsr-x 15 root staff 1024 Mar 20 21:57 ../
-r--r--r-- 1 5115 uucp 16154 Jan 31 09:09 LICENSE
-r--r--r-- 1 5115 uucp 323399 Jan 31 09:08 Netscape.ad
-r--r--r-- 1 5115 uucp 16215 Jan 31 09:09 README
-r--r--r-- 1 5115 uucp 4674 Oct 18 1994 XKeysymDB
-r--r--r-- 1 5115 uucp 11357 Jan 31 09:11 bookmark.htm
drwxr-xr-x 3 5115 uucp 1024 Jan 31 09:11 java/
drwxr-sr-x 2 root staff 1024 Feb 26 17:22 lib/
-r-xr-xr-x 1 5115 uucp 38613 Jan 31 09:11 libjsd.so*
-r-xr-xr-x 1 5115 uucp 14181 Jan 31 09:11 libnullplugin-dynMotif.so*
-r-xr-xr-x 1 5115 uucp 5380 Jan 31 09:11 movemail*
drwxr-xr-x 2 5115 uucp 1024 Jan 31 09:11 movemail-src/
drwxr-xr-x 3 5115 uucp 1024 Jan 31 09:09 nethelp/
-r-xr-xr-x 1 5115 uucp 13855528 Jan 31 09:11 netscape*
-r-xr-xr-x 1 5115 uucp 10736896 Jan 31 09:11 netscape-dynMotif*
drwxr-sr-x 2 root staff 1024 Mar 19 19:15 plugins/
-rw-r--r-- 1 root staff 2656 Feb 26 17:22 registry
drwxr-xr-x 2 5115 uucp 1024 Jan 31 09:09 spell/
-rwxr-xr-x 1 8482 uucp 23032 Feb 9 19:06 vreg*
This Together/J is a strange application in that it seems to be writing
to dirs/files in the directory in which it is installed, but for other
applications that don't do this, what should the group and owner be for
maximum security ?
Thanks.
--
Salman Ahmed
ssahmed AT pathcom DOT com
Reply to: