Annotation of doc/loncapafiles/sanitycheck.piml, revision 1.29

1.4       harris41    1: <!DOCTYPE piml PUBLIC "-//TUX/DTD piml 1.0 Final//EN" 
                      2: 	"http://lpml.sourceforge.net/DTD/piml.dtd">
1.1       harris41    3: <!-- sanitycheck.piml -->
                      4: 
1.29    ! raeburn     5: <!-- $Id: sanitycheck.piml,v 1.28 2009/07/14 04:14:29 raeburn Exp $ -->
1.1       harris41    6: 
                      7: <!--
                      8: 
                      9: This file is part of the LearningOnline Network with CAPA (LON-CAPA).
                     10: 
                     11: LON-CAPA is free software; you can redistribute it and/or modify
                     12: it under the terms of the GNU General Public License as published by
                     13: the Free Software Foundation; either version 2 of the License, or
                     14: (at your option) any later version.
                     15: 
                     16: LON-CAPA is distributed in the hope that it will be useful,
                     17: but WITHOUT ANY WARRANTY; without even the implied warranty of
                     18: MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
                     19: GNU General Public License for more details.
                     20: 
                     21: You should have received a copy of the GNU General Public License
                     22: along with LON-CAPA; if not, write to the Free Software
                     23: Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA
                     24: 
                     25: /home/httpd/html/adm/gpl.txt
                     26: 
                     27: http://www.lon-capa.org/
                     28: 
                     29: -->
                     30: 
                     31: <piml>
                     32: <targetroot>/</targetroot>
                     33: <files>
1.12      harris41   34: <file>
                     35: <target dist='default'>/etc/hosts</target>
                     36: <perlscript mode='fg'>
                     37: unless
                     38:     (-e '<TARGET />') # Does file exist?
                     39:   {
                     40:     print("**** ERROR **** Missing <TARGET />\n");
                     41:   }
                     42: else
                     43:   {
                     44:     my $numentries = `grep -v '^#' <TARGET /> | grep -c '[[:alpha:]]'`;
                     45:     if ($numentries == 1)
                     46:       {
                     47:         print("**** ERROR **** Malformatted <TARGET />\n");
                     48:         print("<TARGET /> typically should have at least two entries, ".
                     49: 	      "e.g.:\n");
                     50: 	print("127.0.0.1               localhost.localdomain localhost\n");
                     51: 	print("35.8.63.26              s16.lite.msu.edu s16\n");
                     52:         print("The <TARGET /> file on your machine looks like it was \n".
                     53: 	      "messed up due to a common bug with RedHat installations.\n".
                     54: 	      "(This weird bug is RedHat's fault, not LON-CAPA's.)\n");
                     55:         print("Please read the man pages about \"hosts\" and fix your\n".
                     56: 	      "<TARGET /> file.\n");
                     57:       }
                     58:   }
                     59: </perlscript>
                     60: </file>
1.6       harris41   61: <file>
                     62: <target dist='default'>/var/lib/mysql/mysql.sock</target>
1.28      raeburn    63: <target dist='debian5 ubuntu6 ubuntu8'>/var/run/mysqld/mysqld.sock</target>
1.6       harris41   64: <perlscript mode='fg'>
                     65: unless
                     66:     (-e '<TARGET />') # Does file exist?
                     67:   {
                     68:     print("**** ERROR **** Missing <TARGET />\n");
                     69:   }
1.15      matthew    70: <!-- Commented out by Matthew since MySQL insists on doing things its own way
1.6       harris41   71: else # It exists, so look at the file metadata more closely.
                     72:   {
                     73:     my @s = stat('<TARGET />');
                     74:     my $uid = $s[4];
                     75:     my $mode = $s[2];
                     76:     my $web_uid = getpwnam('www');
                     77:     my $smode = sprintf("%04o",$mode & 07777);
                     78: 
                     79:     if ($uid ne $web_uid) # If file owned by someone else other than www.
                     80:       {
1.14      matthew    81: 	print('**** WARNING **** <TARGET /> should be owned by'.
1.6       harris41   82: 	      ' www.'."\n".'Try these commands to make things right:'."\n".
1.8       matthew    83: 	      'chown www:www <TARGET />'."\n".
                     84: 	      'chmod a-rwx,u+rwx <TARGET />'."\n");
1.6       harris41   85:       }
1.7       harris41   86:     else # Check permissions on the file to make sure it is private to www.
1.6       harris41   87:       {
                     88: 	$smode =~ /^.(.)..$/;
                     89: 	my $wflag = $1;
1.7       harris41   90: 	if ($wflag != 7) # Can www use this socket?  (Hope so!)
1.6       harris41   91: 	  {
1.14      matthew    92: 	    print('**** WARNING **** '.
1.6       harris41   93: 	      '<TARGET /> should be user "rwx" (by'.
                     94: 	      ' www).'."\n".'Try these commands to make things right:'."\n".
1.8       matthew    95: 	      'chown www:www <TARGET />'."\n".
                     96: 	      'chmod a-rwx,u+rwx <TARGET />'."\n");
1.6       harris41   97: 	  }
                     98: 	$smode=~/^..(..)$/;
                     99: 	$wflag=$1;
1.7       harris41  100: 	if ($wflag ne "00") # Can others use this socket?  (Hope not!)
1.6       harris41  101: 	  {
1.14      matthew   102: 	    print('**** WARNING **** '.
1.6       harris41  103: 	      '<TARGET /> should not be group or everybody accessible'.
                    104: 	      '.'."\n".'Try these commands to make things right:'."\n".
1.8       matthew   105: 	      'chown www:www <TARGET />'."\n".
                    106: 	      'chmod a-rwx,u+rwx <TARGET />'."\n");
1.6       harris41  107: 	  }
                    108:       }
                    109:   }
1.15      matthew   110:  -->
1.6       harris41  111: </perlscript>
                    112: </file>
1.1       harris41  113: <file>
                    114: <target dist='default'>/etc/httpd/conf/loncapa.conf</target>
1.29    ! raeburn   115: <target dist='sles10 suse10.1 suse10.2 suse10.3 suse11.1 susee11.2 debian5 ubuntu6 ubuntu8'>/etc/apache2/loncapa.conf</target>
1.1       harris41  116: <perlscript mode='fg'>
                    117: open IN, "&lt;<TARGET />";
                    118: my $hbug=-1;
                    119: my $dbug=-1;
                    120: while (&lt;IN&gt;) {
                    121:  if (/PerlSetVar\s+lonHostID\s+(\S+)/) {
                    122:   my $v=$1;
                    123:   $hbug=0;
1.23      albertel  124:   $hbug=1 if $v=~/[^\w.\-]/;
                    125:   $hbug=1 if $v=~/_/;
1.1       harris41  126:  }
                    127:  if (/PerlSetVar\s+lonDefDomain\s+(\S+)/) {
                    128:   my $v=$1;
                    129:   $dbug=0;
1.23      albertel  130:   $dbug=1 if $v=~/[^\w.\-]/;
                    131:   $dbug=1 if $v=~/_/;
1.5       harris41  132:   # Avoid namespace conflicts under the web server's DocumentRoot.
                    133:   my @badnames=('raw','userfiles','priv','adm','uploaded');
                    134:   foreach my $bad (@badnames) {
                    135:    $dbug=1 if $v eq $bad;
                    136:   }
1.1       harris41  137:  }
                    138: }
                    139: if ($hbug) {
                    140:   print "**** ERROR **** <TARGET /> has invalid lonHostID\n";
                    141: }
                    142: if ($dbug) {
                    143:   print "**** ERROR **** <TARGET /> has invalid lonDefDomain\n";
                    144: }
                    145: </perlscript>
                    146: </file>
                    147: <file>
                    148: <target dist='default'>/home/httpd/lonTabs/hosts.tab</target>
                    149: open IN, "&lt;<TARGET />";
                    150: my $rbug=0;
                    151: my $dbug=0;
                    152: my $sbug=0;
                    153: my $fbug=0;
1.22      albertel  154: my %line;
                    155: my $line=0;
1.23      albertel  156: while (my $l = &lt;IN&gt;) {
1.22      albertel  157:  $line++;
1.23      albertel  158:  next if ($l=~/^(\#|\s*$)/);
                    159:  if ($l=~/^\^/) {
                    160:   if ($l !~ /^\^[\w.\-]/) {
                    161:     $dns_bug = 1;
                    162:     push(@{$line{'dns'}},$line);
                    163:   }
                    164:  } elsif ($l=~/\S/) {
                    165:   if ($l=~/\r/) {              $rbug=1; push(@{$line{'r'}},$line); }
                    166:   my @a=split(/:/,$l);
1.22      albertel  167:   if ($a[0]=~/[^\w\-.]/ ||
                    168:       $a[1]=~/[^\w\-.]/ ||
                    169:       $a[0]=~/\_/       ||
                    170:       $a[1]=~/\_/      ) { $dbug=1; push(@{$line{'d'}},$line); }
                    171:   if (@a<4 || @a>5) {      $fbug=1; push(@{$line{'f'}},$line); }
1.3       albertel  172:   my $expr='\s.+$';
1.22      albertel  173:   if ($a[0] =~ /$expr/ ||
                    174:       $a[1] =~ /$expr/ ||
                    175:       $a[2] =~ /$expr/ ||
                    176:       $a[3] =~ /$expr/ ) { $sbug=1; push(@{$line{'s'}},$line); }
1.3       albertel  177: ;
1.1       harris41  178:  }
                    179: }
                    180: close IN;
                    181: if ($rbug) {
1.22      albertel  182:   print "**** ERROR **** <TARGET /> is DOS-formatted (lines ".join(', ',@{$line{'r'}}).")\n";
1.1       harris41  183: }
                    184: if ($dbug) {
1.22      albertel  185:   print "**** ERROR **** <TARGET /> has invalid host id or domain id (lines ".join(', ',@{$line{'d'}}).")\n";
1.1       harris41  186: }
                    187: if ($fbug) {
1.22      albertel  188:   print "**** ERROR **** <TARGET /> is lacking 4 or 5 columns for every row (lines ".join(', ',@{$line{'f'}}).")\n";
1.1       harris41  189: }
                    190: if ($sbug) {
1.22      albertel  191:   print "**** ERROR **** <TARGET /> has illegal whitespace character (lines ".join(', ',@{$line{'s'}}).")\n";
1.1       harris41  192: }
1.23      albertel  193: if ($dns_bug) {
                    194:   print "**** ERROR **** <TARGET /> host.tab server entry has characters (lines ".join(', ',@{$line{'dns'}}).")\n";
                    195: }
1.1       harris41  196: </file>
                    197: <file>
                    198: <target dist='default'>/home/httpd/lonTabs/spare.tab</target>
                    199: open IN, "&lt;<TARGET />";
                    200: my $rbug=0;
                    201: my $dbug=0;
                    202: my $sbug=0;
1.18      albertel  203: while (my $line = &lt;IN&gt;) {
                    204:  if ($line =~ /\S/) {
                    205:   $rbug=1 if $line=~/\r/;
1.19      albertel  206:   if ($line =~ /\W.*\n/) {
1.18      albertel  207: 	$dbug=$line if ($line !~/\w:(?:primary|default)$/);
                    208:   }
                    209:   $dbug=$line if $line=~/\_/;
                    210:   $sbug=1 if $line=~/\s.+$/;
1.1       harris41  211:  }
                    212: }
                    213: close IN;
                    214: if ($rbug) {
                    215:   print "**** ERROR **** <TARGET /> is DOS-formatted\n";
                    216: }
                    217: if ($dbug) {
1.18      albertel  218:   print "**** ERROR **** <TARGET /> has invalid host id ($dbug)\n";
1.1       harris41  219: }
                    220: if ($sbug) {
                    221:   print "**** ERROR **** <TARGET /> has illegal whitespace character\n";
                    222: }
                    223: </file>
                    224: </files>
                    225: </piml>

FreeBSD-CVSweb <freebsd-cvsweb@FreeBSD.org>