HPE Community
Operating System - HP-UX
1753288 Members
5524 Online
108792 Solutions
New Discussion юеВ

Re: hp security upgrade

 
SOLVED
Go to solution
Donald Thaler
Super Advisor

тАО11-13-2009 04:48 AM

тАО11-13-2009 04:48 AM

hp security upgrade

after installing the latest security upgrade using the software assistant and running the depot that was created, i see entries like this in the swagent.log after rebooting. should i be concerned and what would the appropriate action be ??

WARNING: Directory "/" should have group,gid "root,0" but the actual
group,gid is "sys,3".


ls -la shows:
drwxr-xr-x 27 root root 8192 Nov 13 07:34 .

cat etc/passwd
root:FMcSBzV4eX6Ps:0:3::/:/sbin/sh

0 Kudos
Reply
4 REPLIES 4
James R. Ferguson
Acclaimed Contributor

тАО11-13-2009 05:08 AM

тАО11-13-2009 05:08 AM

Solution

Re: hp security upgrade

Hi Donald:

The warning is from a 'swverify' step where the actual file or directory permissions and ownership are matched to what a software installation package indicates what should be.

On one of my servers:

# ls -ld /
drwxr-xr-x 20 root root 8192 Oct 10 08:29 /

If your '/' differs, 'chown' it:

# chown root:root /

Regards!

...JRF...
Reply
Donald Thaler
Super Advisor

тАО11-13-2009 06:06 AM

тАО11-13-2009 06:06 AM

Re: hp security upgrade

mine shows the same thing ??
0 Kudos
Reply
James R. Ferguson
Acclaimed Contributor

тАО11-13-2009 06:13 AM

тАО11-13-2009 06:13 AM

Re: hp security upgrade

Hi (again) Donald:

> mine shows the same thing ??

OK, then I'd ignore the warning. It may have been accurate at one point and was corrected.

Regards!

...JRF...
Reply
Bob E Campbell
Honored Contributor

тАО11-13-2009 03:01 PM

тАО11-13-2009 03:01 PM

Re: hp security upgrade

The swverify command checks to see if the ownership of files and directories match what is expected by the product that actually delivered them. The catch here is that every product can claim they own the world.

Look at the swagent.log again an pay attention to what fileset is complaining. Chances are it is not the one that owns root. I am willing to bet there is a delusion of grandeur in the noisy fileset.
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.