What r the correct perms for SW in /usr/local ?

To: debian-user@lists.debian.org
Subject: What r the correct perms for SW in /usr/local ?
From: "S. Salman Ahmed" <ssahmed@pathcom.com>
Date: Tue, 21 Mar 2000 22:07:18 -0500
Message-id: <[🔎] 14552.14566.200735.255662@gargle.gargle.HOWL>
Reply-to: ssahmed@pathcom.com

I have been struggling for the past few days to get Together/J for Linux
installed on a Debian potato box. Together/J is pure-java UML-modelling
tool (and a free version can be downloaded from
<http://www.togethersoft.com>).

I installed version 3.2 of the SW in /usr/local/uml/Together on my
potato system but then noticed that the program launcher shell script
(/usr/local/uml/Together/bin/Together.sh) would only launch the program
for the root user. Anyone else would see the splash screen come up and
the program would get the following exception(s):

@phoenix:[/usr/local/uml/Together/bin] ./Together.sh
map failed
map failed
map failed
map failed
map failed
java.lang.NullPointerException
        at COM.objectspace.jgl.HashMap.put(Compiled Code)
        at zbss.a(Compiled Code)
        at zahs.a(Compiled Code)
        at zagg.<init>(Compiled Code)
        at com.togethersoft.together.impl.uiSystem.WorkspaceManagerImpl.init(Compiled Code)
        at zazz.startup(Compiled Code)
        at com.togethersoft.together.impl.application.AddinLoaderImpl.startup(Compiled Code)
        at com.togethersoft.together.impl.application.ApplicationImpl.init(Compiled Code)
        at com.togethersoft.together.impl.application.ApplicationImpl.run(Compiled Code)
        at com.togethersoft.together.Main.main(Compiled Code)
Exception occurred during event dispatching:
java.lang.NullPointerException
        at com.togethersoft.together.impl.uiSystem.WorkspaceManagerImpl.hidePopupMenu(Compiled Code)
        at com.togethersoft.together.impl.windowSystem.IdeDialogImpl.ungrabPopupMenu(Compiled Code)
        at com.togethersoft.together.impl.windowSystem.IdeDialogImpl.dispose(Compiled Code)
        at zv2.actionPerformed(Compiled Code)

The only way around the problem for non-root users was to create a new
group (javauser), chgrp -R javauser /usr/local/uml/Together, and then
add myself to that group javauser. The permissions before this fix were
sth like:

@phoenix:[/usr/local/uml/Together] dir
total 19076
drwxr-sr-x   13 root     staff        1024 Mar 21 21:20 ./
drwxrwsrwx    3 root     staff        1024 Mar 21 21:19 ../
drwxrwxr-x    6 1002     staff        1024 Mar 21 21:44 bin/
-rw-rw-r--    1 1002     staff           5 Mar 12 13:29 buildnum.txt
drwxrwx--x    2 1002     staff        1024 Mar 21 21:28 config/
drwxr-xr-x    6 1002     staff        1024 Mar 12 13:27 doc/
drwxrwxr-x    7 1002     staff        1024 Mar 12 13:28 help/
drwxr-xr-x    6 1002     staff        1024 Mar 12 13:29 lib/
drwxrwxr-x    2 1002     staff        1024 Mar 12 13:29 license/
drwxr-xr-x    4 1002     staff        1024 Mar 12 13:28 modules/
drwxrwxr-x    2 1002     staff        1024 Mar 12 13:29 myprojects/
drwxrwxr-x    2 1002     staff        1024 Mar 12 13:27 out/
-rw-rw-r--    1 1002     staff       17934 Mar 12 13:29 readme.html
drwxr-xr-x    3 1002     staff        1024 Mar 12 13:28 samples/
drwxrwxr-x    2 1002     staff        1024 Mar 12 13:29 source/

Which, finally, leads to my question: what should the correct
permissions be of an application/software installed in /usr/local ?

For instance, I have noticed that the directory in which I have
installed netscape-4.72 (from tarball) has some weird permissions:

@phoenix:[/usr/local] dir netscape/
total 24578
drwxr-sr-x    8 root  staff     1024 Feb 26 17:23 ./
drwxrwsr-x   15 root  staff     1024 Mar 20 21:57 ../
-r--r--r--    1 5115  uucp     16154 Jan 31 09:09 LICENSE
-r--r--r--    1 5115  uucp    323399 Jan 31 09:08 Netscape.ad
-r--r--r--    1 5115  uucp     16215 Jan 31 09:09 README
-r--r--r--    1 5115  uucp      4674 Oct 18  1994 XKeysymDB
-r--r--r--    1 5115  uucp     11357 Jan 31 09:11 bookmark.htm
drwxr-xr-x    3 5115  uucp      1024 Jan 31 09:11 java/
drwxr-sr-x    2 root  staff     1024 Feb 26 17:22 lib/
-r-xr-xr-x    1 5115  uucp     38613 Jan 31 09:11 libjsd.so*
-r-xr-xr-x    1 5115  uucp     14181 Jan 31 09:11 libnullplugin-dynMotif.so*
-r-xr-xr-x    1 5115  uucp      5380 Jan 31 09:11 movemail*
drwxr-xr-x    2 5115  uucp      1024 Jan 31 09:11 movemail-src/
drwxr-xr-x    3 5115  uucp      1024 Jan 31 09:09 nethelp/
-r-xr-xr-x    1 5115  uucp  13855528 Jan 31 09:11 netscape*
-r-xr-xr-x    1 5115  uucp  10736896 Jan 31 09:11 netscape-dynMotif*
drwxr-sr-x    2 root  staff     1024 Mar 19 19:15 plugins/
-rw-r--r--    1 root  staff     2656 Feb 26 17:22 registry
drwxr-xr-x    2 5115  uucp      1024 Jan 31 09:09 spell/
-rwxr-xr-x    1 8482  uucp     23032 Feb  9 19:06 vreg*

This Together/J is a strange application in that it seems to be writing
to dirs/files in the directory in which it is installed, but for other
applications that don't do this, what should the group and owner be for
maximum security ?

Thanks.

--
Salman Ahmed
ssahmed AT pathcom DOT com

Reply to:

Follow-Ups:
- Re: What r the correct perms for SW in /usr/local ?
  - From: Ethan Benson <erbenson@alaska.net>

Prev by Date: Re: checking md5sum of installed packages
Next by Date: Re: Debian rocks
Previous by thread: Re: checking md5sum of installed packages
Next by thread: Re: What r the correct perms for SW in /usr/local ?
Index(es):
- Date
- Thread