Page MenuHomePhabricator

some tools-sgewebgrid-lighttpd do not have world-writable /var/run/lighttpd
Closed, ResolvedPublic

Description

I just had to do a cumin on all tools-sgewebgrid-lighttpd nodes to chmod 777 /var/run/lighttpd, since despite our puppetization in profile::toolforge::grid::node::web::lighttpd about half of the nodes in mode rwxr-x---. We should figure out what happened there and make sure it doesn't happen again.

Event Timeline

Mentioned in SAL (#wikimedia-cloud) [2022-01-14T19:09:46Z] <taavi> set /var/run/lighttpd as world-writable on all lighttpd webgrid nodes, T299243

Were you able to check any of the timestamps to see if there was pattern on when they were changed / modified? I'm curious if this was a natural drift over time or something programmatic that made an update all at once (like you did with cumin)

taavi claimed this task.