Scheduled Maintenance: We are aware of an issue with Google, AOL, and Yahoo services as email providers which are blocking new registrations. We are trying to fix the issue and we have several internal and external support tickets in process to resolve the issue. Please see: viewtopic.php?t=158230

 

 

 

Non root user unable to access network

Linux Kernel, Network, and Services configuration.
Post Reply
Message
Author
Tuinslak
Posts: 2
Joined: 2011-03-28 18:56

Non root user unable to access network

#1 Post by Tuinslak »

Hi,

I upgraded a Guruplug Display machine running Lenny to Squeeze.
It's running Linux on a MicroSD device, running an ARM-cpu.

Code: Select all

# uname -a
Linux gplugD 2.6.29 #1 Wed Feb 16 17:59:04 IST 2011 armv5tejl GNU/Linux

Code: Select all

yeri@gplugD ~ $ cat /etc/debian_version 
6.0.1
So far, so good

However, after rebooting, every non root user was unable to access anything related to the net.

This means, DHCP failed to auto start, ntp is giving errors, etc

Code: Select all

# ntpq -p
localhost: timed out, nothing received
***Request timed out
daemon.log:

Code: Select all

Mar 27 06:07:44 localhost ntpd[1478]: ./../lib/isc/unix/ifiter_ioctl.c:348: unexpected error:
Mar 27 06:07:44 localhost ntpd[1478]: making interface scan socket: Permission denied
Mar 27 06:07:44 localhost ntpd[1478]: Too many errors.  Shutting up.
As root:

Code: Select all

gplugD ~ # ping 85.12.6.171 -c 1 
PING 85.12.6.171 (85.12.6.171) 56(84) bytes of data.
64 bytes from 85.12.6.171: icmp_req=1 ttl=58 time=42.1 ms

--- 85.12.6.171 ping statistics ---
1 packets transmitted, 1 received, 0% packet loss, time 0ms
rtt min/avg/max/mdev = 42.153/42.153/42.153/0.000 ms
gplugD ~ # ping google.com -c 1
PING google.com (74.125.232.115) 56(84) bytes of data.
64 bytes from 74.125.232.115: icmp_req=1 ttl=53 time=46.1 ms

--- google.com ping statistics ---
1 packets transmitted, 1 received, 0% packet loss, time 0ms
rtt min/avg/max/mdev = 46.124/46.124/46.124/0.000 ms
As regular user:

Code: Select all

yeri@gplugD ~ $ ping google.be -c 1
ping: unknown host google.be
yeri@gplugD ~ $ ping 85.12.6.171 -c 1
socket: Permission denied
yeri@gplugD ~ $ ssh localhost
socket: Permission denied
ssh: connect to host localhost port 22: Permission denied
Ping strace: http://pastebin.com/Dpm7i64G > "socket(PF_INET, SOCK_DGRAM, IPPROTO_IP) = -1 EACCES (Permission denied)"

dmesg doesn't show anything odd (and nothing when ping fails)

Code: Select all

gplugD ~ # groups root
root : root
gplugD ~ # groups yeri
yeri : irail
Any idea how I can fix this ?

Thanks.

Tuinslak
Posts: 2
Joined: 2011-03-28 18:56

Re: Non root user unable to access network

#2 Post by Tuinslak »

Right, found the fix;

gplugD ~ # groupadd -g 3003 aid_inet
gplugD ~ # usermod -G aid_inet yeri

> hardcoded in kernel: CONFIG_ANDROID_PARANOID_NETWORK

Post Reply