Non root user unable to access network

Kernels & Hardware, configuring network, installing services

Non root user unable to access network

Postby Tuinslak » 2011-03-28 19:02

Hi,

I upgraded a Guruplug Display machine running Lenny to Squeeze.
It's running Linux on a MicroSD device, running an ARM-cpu.

Code: Select all
# uname -a
Linux gplugD 2.6.29 #1 Wed Feb 16 17:59:04 IST 2011 armv5tejl GNU/Linux


Code: Select all
yeri@gplugD ~ $ cat /etc/debian_version
6.0.1


So far, so good

However, after rebooting, every non root user was unable to access anything related to the net.

This means, DHCP failed to auto start, ntp is giving errors, etc

Code: Select all
# ntpq -p
localhost: timed out, nothing received
***Request timed out


daemon.log:

Code: Select all
Mar 27 06:07:44 localhost ntpd[1478]: ./../lib/isc/unix/ifiter_ioctl.c:348: unexpected error:
Mar 27 06:07:44 localhost ntpd[1478]: making interface scan socket: Permission denied
Mar 27 06:07:44 localhost ntpd[1478]: Too many errors.  Shutting up.


As root:

Code: Select all
gplugD ~ # ping 85.12.6.171 -c 1
PING 85.12.6.171 (85.12.6.171) 56(84) bytes of data.
64 bytes from 85.12.6.171: icmp_req=1 ttl=58 time=42.1 ms

--- 85.12.6.171 ping statistics ---
1 packets transmitted, 1 received, 0% packet loss, time 0ms
rtt min/avg/max/mdev = 42.153/42.153/42.153/0.000 ms
gplugD ~ # ping google.com -c 1
PING google.com (74.125.232.115) 56(84) bytes of data.
64 bytes from 74.125.232.115: icmp_req=1 ttl=53 time=46.1 ms

--- google.com ping statistics ---
1 packets transmitted, 1 received, 0% packet loss, time 0ms
rtt min/avg/max/mdev = 46.124/46.124/46.124/0.000 ms


As regular user:

Code: Select all
yeri@gplugD ~ $ ping google.be -c 1
ping: unknown host google.be
yeri@gplugD ~ $ ping 85.12.6.171 -c 1
socket: Permission denied
yeri@gplugD ~ $ ssh localhost
socket: Permission denied
ssh: connect to host localhost port 22: Permission denied


Ping strace: http://pastebin.com/Dpm7i64G > "socket(PF_INET, SOCK_DGRAM, IPPROTO_IP) = -1 EACCES (Permission denied)"

dmesg doesn't show anything odd (and nothing when ping fails)

Code: Select all
gplugD ~ # groups root
root : root
gplugD ~ # groups yeri
yeri : irail


Any idea how I can fix this ?

Thanks.
Tuinslak
 
Posts: 2
Joined: 2011-03-28 18:56

Re: Non root user unable to access network

Postby Tuinslak » 2011-03-28 20:07

Right, found the fix;

gplugD ~ # groupadd -g 3003 aid_inet
gplugD ~ # usermod -G aid_inet yeri

> hardcoded in kernel: CONFIG_ANDROID_PARANOID_NETWORK
Tuinslak
 
Posts: 2
Joined: 2011-03-28 18:56


Return to System configuration

Who is online

Users browsing this forum: No registered users and 9 guests

fashionable