I have a set of directory trees with funky (i.e. customized to please certain apps) access permissions. The "problem" is that OS and App patches will sometimes reset file permissions, which results in App breakage.
What I'm looking for is a script or tool or idea I could code myself that would generate a list of file/permission pairs for a directory tree, allowing me to diff the results after a patch in order to restore the permissions the App needs to run.
You are right the HP-UX patches do not directly cause this.
Here is a more precise description of what happens.
A proprietary App is installed on an HP-UX Box.
The App uses an Oracle 10gR2 DB, Oracle Application Server, Java, Oracle ProCOBOL and some straight COBOL through Microfocus.
Yeah, its a nightmare.
Some administratives instances in the company have insisted that the App's files, RDBMS files and OAS files belong to three separate users IDs.
The App manufacturer uses only one user ( the oracle user ) to drive everything. This has led to security "compromises" in the form of loosening lib folder permissions both in OAS and RDBMS, crossed groups, context switching scripts and other nastiness.
When an HP-UX QPK is applied, standard procedure mandates that the Oracle binaries and libraries be relinked.
The Oracle relink scripts will reset library and binary file permissions to their correct, default values. THIS results in App breakage, in the described environment.
The HP-UX standard patch bundles are therefore not to blame, nor are the Oracle relink scripts.
The cause of all this wears a tie, sits in a closed office and does not know what "SMTP" means.
