I recently discovered a new limitation (not really a bug I guess?) on my Yunohost server, but I cannot remember when it began (after which upgrade, or not). For information my yunohost server is totally up-to-date (I upgrade it very often).
I use the same server for both Yunohost and also as a generic webserver of mine, hosting some little static websites under
/var/www. Historically, I pushed update to these projects using an
rsync command from my computer. Even if the
/var/www folder itself was owned by a system account (
root? I don’t remember exactly) I once created subfolders for each of my little projects, these folders being owned by a simple user (uid 1000).
It works like a charm until recently: now, when I try to access these subfolders, either by
rsync or directly on the server with a
cd, I got a “Permission denied” error.
Logged in as the
admin account, I don’t have this error, even if the folder does not belong to it. Obviously
root has no problem either.
Here is the output of the
ls command on
$ ll /var/www total 60K drwxr-xr-x+ 15 root root 4.0K Apr 12 23:23 . drwxr-xr-x 12 root root 4.0K Jul 16 2020 .. drwxr-xr-x 5 simpleuser simpleuser 4.0K Apr 19 16:04 project1 drwxr-xr-x 11 simpleuser www-data 4.0K Dec 30 13:41 project2 drwxr-xr-x 2 root root 4.0K Dec 6 2018 html drwxr-xr-x 14 root root 4.0K Mar 5 11:10 roundcube […]
The only thing which looks like different from other system I already manage, is the
+ sign at the end of the ACLs bits of the
/var/www directory. I must admit I’m not a ACL UNIX expert and only understand the minimal things around chmod/chown Thus I wonder if it is not the thing called “setuid” or “setgid” or even “sticky bit”, but I’ve no idea how it appears, what it is about and how to work with. On another server of mine, without yunohost, but on the same Debian version, I don’t see that
Looking at the man page of
chmod, I stupidly tried a simple
chmod 00755 /var/www as root to remove setuid if it was that. But it changed nothing and the
+ is still there.
So any help would be welcome, to give me some directions to understand what happen (what is this
+? Is it safe to remove it? and how?)
Thank you very much!