Hi,
I recently discovered a new limitation (not really a bug I guess?) on my Yunohost server, but I cannot remember when it began (after which upgrade, or not). For information my yunohost server is totally up-to-date (I upgrade it very often).
I use the same server for both Yunohost and also as a generic webserver of mine, hosting some little static websites under /var/www
. Historically, I pushed update to these projects using an rsync
command from my computer. Even if the /var/www
folder itself was owned by a system account (www-data
or root
? I don’t remember exactly) I once created subfolders for each of my little projects, these folders being owned by a simple user (uid 1000).
It works like a charm until recently: now, when I try to access these subfolders, either by rsync
or directly on the server with a cd
, I got a “Permission denied” error.
Logged in as the admin
account, I don’t have this error, even if the folder does not belong to it. Obviously root
has no problem either.
Here is the output of the ls
command on /var/www
:
$ ll /var/www
total 60K
drwxr-xr-x+ 15 root root 4.0K Apr 12 23:23 .
drwxr-xr-x 12 root root 4.0K Jul 16 2020 ..
drwxr-xr-x 5 simpleuser simpleuser 4.0K Apr 19 16:04 project1
drwxr-xr-x 11 simpleuser www-data 4.0K Dec 30 13:41 project2
drwxr-xr-x 2 root root 4.0K Dec 6 2018 html
drwxr-xr-x 14 root root 4.0K Mar 5 11:10 roundcube
[…]
The only thing which looks like different from other system I already manage, is the +
sign at the end of the ACLs bits of the /var/www
directory. I must admit I’m not a ACL UNIX expert and only understand the minimal things around chmod/chown Thus I wonder if it is not the thing called “setuid” or “setgid” or even “sticky bit”, but I’ve no idea how it appears, what it is about and how to work with. On another server of mine, without yunohost, but on the same Debian version, I don’t see that +
sign.
Looking at the man page of chmod
, I stupidly tried a simple chmod 00755 /var/www
as root to remove setuid if it was that. But it changed nothing and the +
is still there.
So any help would be welcome, to give me some directions to understand what happen (what is this +
? Is it safe to remove it? and how?)
Thank you very much!