@Tom-Elliott just a friendly reminder. The dev-branch doesn’t have the new code in functions.sh for the nfs mount.
Thank you for all your help.
Posts
-
RE: I ran into problem with the NFS server when trying to update to the latest dev version - 1.5.10.1580posted in FOG Problems
-
RE: What ports does FOG use?posted in FOG Problems
@fogcloud we have an ansible playbook to handle FOG firewall rules (firewalld) and the ports used are:
allow_icmp: - echo-request - echo-reply services: - ftp - http - mountd - nfs - rpc-bind - tftp ports: - { port: 20048, proto: tcp } # nfs - { port: 20048, proto: udp } # nfs - { port: "35350-36350", proto: udp } # tftp - { port: "49512-65532", proto: udp } # multicastthe port 20048 is added on nfs.conf
the range 35350-36350 is added on tftp options
and the 49512-65532 is for all the dynamic ports -
RE: export unauthorizedposted in FOG Problems
tested on staging server and it works.
OS: Ubuntu 22.04
FOG Server: 1.5.10.1577Export of images and hosts now is successful
-
RE: export unauthorizedposted in FOG Problems
I believe the problem you are facing is the way the new export.php (https://github.com/FOGProject/fogproject/compare/1.5.10...1.5.10.41?diff=split&w=#diff-ff9e620c45c9b82140dffca512e6417f03cc4972a20a6659a4f4a248ffa56082) validates the export.
I have the same problem on a newly installed server OS: Ubuntu 22.04, FOG Server: 1.5.10.48. I changed the if statement with
echo $currentUser; echo '<br>'; echo strtolower($_SERVER['HTTP_X_REQUESTED_WITH']); echo '<br>'; echo _('Unauthorized'); exit;on export.php and as it shows
User ID: 1 Name: fog Unauthorizedthe blank line is the empty variable which then forces the Unauthorized exit.
-
RE: FOG image capture file permissionsposted in FOG Problems
@AUTH-IT-Center with the dev-branch the created folder after the image capture has the correct permissions.
will wait for the update on stable branch to deploy to the production server.
Thank you!
-
RE: FOG image capture file permissionsposted in FOG Problems
@Tom-Elliott since this is the production server I will try it on a staging one and notify you.
-
RE: FOG image capture file permissionsposted in FOG Problems
unfortunately the same result.
also the permissions of the init.xz and init_32.xz on /var/www/html/fog/service/ipxe/ got 755 instead of 644 and the group www-data (just mentioning)
the system is 64bit
-
FOG image capture file permissionsposted in FOG Problems
Server
FOG Version: 1.5.10.48
OS: Ubuntu 22.04Hello first post so please forgive me if it’s in the wrong section.
Since the storage permissions of /images are 775 (https://forums.fogproject.org/topic/17486/fog-1-5-10-and-earlier-nfs-privilege-escalation-vulnerability) shouldn’t the capture image create the files with the same permisssions?
While testing a new image capture the permissions are 777 and the owner:group is fogproject.
