/ English
(french version below)
My YunoHost server
Hardware: Old laptop running Yunohost in Virtualbox
YunoHost version: 11.1.0.2 testing (following the bug of distribution of testing version in stable branche)
I have access to my server : Through SSH for the moment | direct access via keyboard / screen in 2 days, idem for webadmin
Are you in a special context or did you perform some particular tweaking on your YunoHost instance ? : yes, modified mail configuration to use my ISP SMTP relay
Description of my issue
Hi all,
I run an update yesterday evening (around 22:50). This morning I saw I got a mail from my Nextcloud app (23:15) addressed to me as user (not root/admin) saying "An administrator added you to the group âadminsâ " (the s at the end is not an error).
I found that weird and tried to connect to my server via SSH as âadminâ, no problem to enter the passphrase, however when I run a âsudoâ command, Iâm asked to enter a password, and I have to give the password of the admin user (not the SSH passphrase).
I also connected myself to my nextcloud account and checked the admin parameters, I now have two groups : âadminâ and âadminsâ (I am in both), and a (probably new) user called âadminâ who is only in âadminsâ group.
So two problems :
- I canât use sudo in SSH cli without entering password : is it a normal new feature ? Is it linked to testing version?
- I have a new group in nextcloud called âadminsâ and a new user called âadminâ : do I have to worry of an intrusion or is it normal stuff following a nextcloud update? (I did not update nextcloud yesterdayâŠ)
I can share logs if necessary, but I dont know wich ones. I found this one, probably it means it is normal I got a new admins group:
root@lourdelet:/var/log/yunohost/categories/operation# cat 20221104-214232-user_group_update-admins.log
2022-11-04 22:42:32,331: DEBUG - The permission database has been resynchronized
2022-11-04 22:42:32,475: DEBUG - La configuration de SSOwat a été regénérée
2022-11-04 22:42:32,484: SUCCESS - Le groupe 'admins' a été mis à jour
2022-11-04 22:42:32,655: DEBUG - The permission database has been resynchronized
2022-11-04 22:42:32,807: DEBUG - La configuration de SSOwat a été regénérée
2022-11-04 22:42:32,816: SUCCESS - Le groupe 'admins' a été mis à jour
And auth.log if usefull, at hour of nextcloud modification:
Nov 4 23:10:01 lourdelet CRON[6737]: pam_unix(cron:session): session opened for user root(uid=0) by (uid=0)
Nov 4 23:10:23 lourdelet CRON[6737]: pam_unix(cron:session): session closed for user root
Nov 4 23:15:01 lourdelet CRON[6753]: pam_unix(cron:session): session opened for user root(uid=0) by (uid=0)
Nov 4 23:15:01 lourdelet CRON[6754]: pam_unix(cron:session): session opened for user nextcloud(uid=998) by (uid=0)
Nov 4 23:15:01 lourdelet CRON[6753]: pam_unix(cron:session): session closed for user root
Nov 4 23:15:03 lourdelet CRON[6754]: pam_unix(cron:session): session closed for user nextcloud
Nov 4 23:17:01 lourdelet CRON[6770]: pam_unix(cron:session): session opened for user root(uid=0) by (uid=0)
Nov 4 23:17:01 lourdelet CRON[6770]: pam_unix(cron:session): session closed for user root
Thanks a lot for your answers,
Louis
Français
Description du problĂšme
Bonjour Ă tous,
Jâai mis Ă jour mon systĂšme hier soir (pas les app donc pas nextcloud), et jâai reçu 30 minutes aprĂšs un mail de Nextcloud me disant : "un administrateur vous a ajoutĂ© au groupe âadminsâ ". Un peu Ă©tonnĂ© par ce message, je me connecte en SSH ce matin, connexion OK mais je dois rentrer mon mot de passe admin pour pouvoir exĂ©cuter une commande sudo (ça ne mâarrivait jamais avant). Je checke sur nextcloud la liste des utilisateurs, je me retrouve avec ça, un nouvel utilisateur admin (en tous cas ça me disait rien), qui fait partie dâun groupe âadminsâ :
- Est-ce normal que je doive dĂ©sormais mettre mon mdp en ssh pour exĂ©cuter sudo ? est-ce liĂ© au passage par erreur en version âtestingâ ?
- Est-ce que je dois mâinquiĂ©ter de la crĂ©ation de ce nouveau groupe / user sur nextcloud ?
Merci dâavance pour vos rĂ©ponses, et dites-moi sâil y a besoin de rĂ©cupĂ©rer davantage dâinfos des logs.
Louis