Whonix template: /etc owned by user:user

[marmarek]

No description provided.

[marmarek]

@nrgaway

[marmarek]

@nrgaway

[nrgaway]

It appears that this is only in Whonix for some reason; not Debian the standard templates

[nrgaway]

It appears that this is only in Whonix for some reason; not Debian the standard templates

[marmarek]

@adrelanos any idea?

[marmarek]

@adrelanos any idea?

[adrelanos]

No, it's a mystery. I find the cause neither in the code nor in the build log.

[adrelanos]

No, it's a mystery. I find the cause neither in the code nor in the build log.

[unman]

This is whonix specific, if indeed it is still open.
Can someone remove Debian label, and update to Whonix

[unman]

This is whonix specific, if indeed it is still open.
Can someone remove Debian label, and update to Whonix

[adrelanos]

- Not happening in Non-Qubes-Whonix 13. - Not happening in Debian-8 template. - Still happening in Qubes-Whonix 13. Even though the build process has changed between Whonix 12 and Whonix 13.

[adrelanos]

- Not happening in Non-Qubes-Whonix 13. - Not happening in Debian-8 template. - Still happening in Qubes-Whonix 13. Even though the build process has changed between Whonix 12 and Whonix 13.

[adrelanos]

This could be actually more than a minor bug. In rare cases /var/lib/tor was owned by the wrong user which can lead to Tor no longer starting. Or when using sshfs in Whonix-Workstation, the remote folder got the wrong group (neither user nor root).

Do linux distributions, adduser / useradd have something like a default user or default group that could be set wrong somewhere?

[adrelanos]

This could be actually more than a minor bug. In rare cases /var/lib/tor was owned by the wrong user which can lead to Tor no longer starting. Or when using sshfs in Whonix-Workstation, the remote folder got the wrong group (neither user nor root).

Do linux distributions, adduser / useradd have something like a default user or default group that could be set wrong somewhere?

[marmarek]

On Sun, Nov 13, 2016 at 04:28:14PM -0800, Patrick Schleizer wrote:

This could be actually more than a minor bug. In rare cases /var/lib/tor was owned by the wrong user which can lead to Tor no longer starting. Or when using sshfs in Whonix-Workstation, the remote folder got the wrong group (neither user nor root).

sshfs from Whonix-Workstation, or to Whonix-Workstation? In the former
case it shouldn't have anything to do with Whonix-Workstation, as
non-root user have no power of changing file owner (I assume you've
connected to non-root account, right?).

Do linux distributions, adduser / useradd have something like a default user or default group that could be set wrong somewhere?

There is /etc/login.defs, but I doubt if anything wrong there would
result in changing ownership of /etc...

Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A: Because it messes up the order in which people normally read text.
Q: Why is top-posting such a bad thing?

[marmarek]

On Sun, Nov 13, 2016 at 04:28:14PM -0800, Patrick Schleizer wrote:

This could be actually more than a minor bug. In rare cases /var/lib/tor was owned by the wrong user which can lead to Tor no longer starting. Or when using sshfs in Whonix-Workstation, the remote folder got the wrong group (neither user nor root).

sshfs from Whonix-Workstation, or to Whonix-Workstation? In the former
case it shouldn't have anything to do with Whonix-Workstation, as
non-root user have no power of changing file owner (I assume you've
connected to non-root account, right?).

Do linux distributions, adduser / useradd have something like a default user or default group that could be set wrong somewhere?

There is /etc/login.defs, but I doubt if anything wrong there would
result in changing ownership of /etc...

Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A: Because it messes up the order in which people normally read text.
Q: Why is top-posting such a bad thing?

[unman]

Am I missing something here? I'm working on a vanilla 3.2. I didn't create whonix VMs on set-up.
In the templates root.img everything looks as expected.
I've just created appVMs and proxyVM based on the templates and neither have /etc owned by user.
Is there another issue - the "rare cases" - or is it an intermittent build failure, or what?

[unman]

Am I missing something here? I'm working on a vanilla 3.2. I didn't create whonix VMs on set-up.
In the templates root.img everything looks as expected.
I've just created appVMs and proxyVM based on the templates and neither have /etc owned by user.
Is there another issue - the "rare cases" - or is it an intermittent build failure, or what?

[adrelanos]

/etc/login.defs looks same on my systems, but I currently have no more
VMs with this bug.

Does anyone still have a Whonix VM where /etc is owned by user:user?

If so, could you please diff Whonix /etc/login.defs and Debian
/etc/login.defs?

Marek Marczykowski-Górecki:

sshfs from Whonix-Workstation, or to Whonix-Workstation?

From Whonix-Workstation to a server.

I assume you've connected to non-root account, right?

Was using root login.

unman:

Is there another issue - the "rare cases" - or is it an intermittent
build failure, or what?

I wish I knew.

[adrelanos]

/etc/login.defs looks same on my systems, but I currently have no more
VMs with this bug.

Does anyone still have a Whonix VM where /etc is owned by user:user?

If so, could you please diff Whonix /etc/login.defs and Debian
/etc/login.defs?

Marek Marczykowski-Górecki:

sshfs from Whonix-Workstation, or to Whonix-Workstation?

From Whonix-Workstation to a server.

I assume you've connected to non-root account, right?

Was using root login.

unman:

Is there another issue - the "rare cases" - or is it an intermittent
build failure, or what?

I wish I knew.

[marmarek]

Does anyone still have a Whonix VM where /etc is owned by user:user?

Yes, I have. But this one was built some time ago (qubes-template-whonix-ws-3.0.4-201601110428.noarch). I don't have build log of it unfortunately.

[marmarek]

Does anyone still have a Whonix VM where /etc is owned by user:user?

Yes, I have. But this one was built some time ago (qubes-template-whonix-ws-3.0.4-201601110428.noarch). I don't have build log of it unfortunately.

[unman]

@adrelanos Is this still an open issue in 3.2?

[unman]

@adrelanos Is this still an open issue in 3.2?

[adrelanos]

Yes.

[adrelanos]

Yes.