From: Martin M. <mai...@cl...> - 2005-09-18 19:30:51
|
Hello, i have boa running on a gumstix with netCF, all the content and logfiles = i have put on a big (128 MB) CF card. This is what i have done: CF card is mounted permanently to directory /cf # mount /dev/mtdblock2 on / type jffs2 (rw,noatime) /proc on /proc type proc (rw,nodiratime) sysfs on /sys type sysfs (rw) devpts on /dev/pts type devpts (rw) tmpfs on /tmp type tmpfs (rw) /dev/hda1 on /cf type vfat = (rw,nodiratime,fmask=3D0022,dmask=3D0022,codepage=3Dcp437,iocharset=3Diso= 8859-1) Inside /var: ln -s /cf/www www (of course renamed the old www to = www.old) Put some HTML content inside /cf/www Inside tmp: ln -s /cf/boa_access_log boa_access_log (same with the other = files boa_cgi_log and boa_error_log) Access the webserver is fine, but logfiles have permissions -rwxr-xr-x 1 root root 13508 Sep 18 20:53 boa_access_log -rwxr-xr-x 1 root root 0 Sep 18 20:53 boa_cgi_log -rwxr-xr-x 1 root root 3827 Sep 18 20:53 boa_error_log and boa can't write to them (i think because write permission is not set = for non-root). I tried to change them via chmod, but is not working = (think because vfat has no rights field). So tried fmask=3D0000 and = dmask=3D0000 in /etc/fstab. # mount /dev/mtdblock2 on / type jffs2 (rw,noatime) /proc on /proc type proc (rw,nodiratime) sysfs on /sys type sysfs (rw) devpts on /dev/pts type devpts (rw) tmpfs on /tmp type tmpfs (rw) /dev/hda1 on /cf type vfat = (rw,nodiratime,fmask=3D0000,dmask=3D0000,codepage=3Dcp437,iocharset=3Diso= 8859-1) The permission is now rwxrwxrwx, but even there boa is not writing = anything to the logfiles. Why ? Is there a solution for this problem ? Even then is it a security risk = to put all file permissions to allow everything when (hopefully) only = boa can access the CF card ?=20 Ok, another possibility could be to format the CF card with another fs ? = But then i think i can't edit the content not more via WinXP... Any ideas ? Regards and thanks, Martin |
From: Martin M. <mai...@cl...> - 2005-09-18 19:36:31
|
Additional note / bug ? Creating a new directory: rwx------ (is there a cache to store such = things ?) Umounting and mounting again: Same directory has now rwxrwxrwx = (according to fmask/dmask) Regards, Martin |
From: Jonathan B. <jbr...@ea...> - 2005-09-18 22:09:22
|
On Sun, 2005-09-18 at 21:30 +0200, Martin Maurer wrote: > CF card is mounted permanently to directory /cf > > /dev/hda1 on /cf type vfat > > Is there a solution for this problem ? Even then is it a security risk > to put all file permissions to allow everything when (hopefully) only > boa can access the CF card ? > > Ok, another possibility could be to format the CF card with another > fs ? But then i think i can't edit the content not more via WinXP... As far as I know, this is the only real option available to you, since FAT doesn't support the security features you want. I use ext3 since it has journaling support and will be readable by nearly any Linux workstation. > Any ideas ? There are one or two Windows drivers out there that will let you read an ext2 or ext3 fs from Windows, but I haven't used one. HTH, -Jonathan |
From: Craig H. <cr...@gu...> - 2005-09-19 17:40:20
|
On Sep 18, 2005, at 3:09 PM, Jonathan Brandmeyer wrote: > There are one or two Windows drivers out there that will let you > read an > ext2 or ext3 fs from Windows, but I haven't used one. You can also compile the USB gadget storage driver for the gumstix, and then use the gumstix as a fancy cardreader for the windows machine, which can read cards written with any filesystem that linux knows about. At least I assume that the storage gadget speaks some kind of generic (non-filesystem based) network protocol which windows groks. C |