OpenVZ Forum


Home » General » Support » suexec permission problem when simfs + centos 7 + tar/cp backup
suexec permission problem when simfs + centos 7 + tar/cp backup [message #52236] Tue, 13 October 2015 08:09 Go to next message
nethubonline is currently offline  nethubonline
Messages: 23
Registered: October 2007
Junior Member
From: *static.ctinets.com
Hi all,

VZ Kernel: 2.6.32-042stab111.12
Guest OS: CentOS Linux release 7.1.1503 (Core)
Apache RPM (official CentOS yum repository): httpd-2.4.6-31.el7.centos.1.x86_64
VE_LAYOUT: simfs


After I create a guest OS with CentOS and Apache installed, usually I use rsync/cp/tar /vz/private/VEID to backup the VM. However I found that I cannot backup /usr/sbin/suexec correctly and some of my PHP does not work properly (with mod_fcgid) with "failed to setgid" error.

I checked the /usr/sbin/suexec in CentOS 7 is no longer setuid root, instead it is using Linux capabilities ( https://welldefinedbehaviour.wordpress.com/2014/01/27/safer- suexec-from-setuid-to-linux-capabilities/). I tried to cp/tar /usr/sbin/suexec, and finally the new suexec files does not has the Linux capabilites. This is the main reason to cause my mod_fcgid failure.


Can anyone tell me How can I copy/tar/backup VM correctly without concerning any VM files have the Linux capabilities?


PS: I tested ploop does not has this problem because whole VM is a image, however for some reason I need to use simfs.


https://www.nethub.com.hk (VPS Hosting Provider in Hong Kong)
*SOLVED* suexec permission problem when simfs + centos 7 + tar/cp backup [message #52238 is a reply to message #52236] Thu, 15 October 2015 06:36 Go to previous message
nethubonline is currently offline  nethubonline
Messages: 23
Registered: October 2007
Junior Member
From: *static.ctinets.com
found "cp -Rf --preserve=all" work for Linux capabilities

https://www.nethub.com.hk (VPS Hosting Provider in Hong Kong)
Previous Topic: OpenVZ container cannot connect to LAN
Next Topic: Network Issues in VPS domain server
Goto Forum:
  


Current Time: Mon Dec 17 16:40:19 GMT 2018