[rt-users] ModifySelf Privilege Prevents Login
Behzad Mahini
mahini at apple.com
Fri Sep 25 18:23:19 EDT 2009
Good News & bad News (for me it is still bad News).....I took care of
the complaint about "Undefined subroutine &RT::LoadConfig()", by
placing all of the following lines in a single file (i.e.,
replace_password.pl), and executing the following code from the
command line (I simply replaced the command-line portion "-MRT -
MRT::User" with a single line of "use RT;" in the following code):
1) code:
======
#!/usr/bin/perl -w
use lib '/usr/local/src/oppresso/rt-3.8.4/lib';
use lib '/ngs/app/rt/oppresso/rt-3.8.4/lib';
use lib '/ngs/app/rt/oppresso/rt-3.8.4/local/plugins/RT-FM/lib'; #if
using RTFM
use lib '/ngs/app/rt/oppresso/rt-3.8.4/local/plugins/RT-IR/lib'; #if
using RTIR
use RT;
RT::LoadConfig();
RT::Init();
my $u = RT::User->new($RT::SystemUser);
$u->Load("root");
$u->setPassword("secret");
2) Executing it:
============
$sudo ./replace_password.pl
Change of config option 'MaxInlineBody' at /ngs/app/rt/oppresso/
rt-3.8.4/local/plugins/RT-IR/etc/RTIR_Config.pm line 13 has been
ignored. It's may be ok, but we want you to be aware. This option
earlier has been set in /ngs/app/rt/oppresso/rt-3.8.4/etc/
RT_SiteConfig.pm line 152. at /ngs/app/rt/oppresso/rt-3.8.4/lib/RT/
Config.pm line 738.
Change of config option 'Active_MakeClicky' at /ngs/app/rt/oppresso/
rt-3.8.4/local/plugins/RT-IR/etc/RTIR_Config.pm line 263 has been
ignored. It's may be ok, but we want you to be aware. This option
earlier has been set in /ngs/app/rt/oppresso/rt-3.8.4/etc/
RT_SiteConfig.pm line 186. at /ngs/app/rt/oppresso/rt-3.8.4/lib/RT/
Config.pm line 738.
3) Assumptions:
=============
I am assuming the above lines (per http://wiki.bestpractical.com/view/RecoverRootPassword)
are sufficient.
4)Results:
========
I did not get any other warnings (or error messages), which was good.
However, I still can not log back in (using root) from the UI. The
above warnings I received were trivial, so I am ignoring them.
Help please.
-Behzad
On Sep 25, 2009, at 1:58 PM, Behzad Mahini wrote:
> Since I had installed RT-FM & RT-IR, ...at the command line using
> the Perl command I decided to include the paths to RT-FM & RT-IR
> libraries (Plugins), and the error message changed (from what I had
> sent earlier) to the following:
>
>
> $sudo perl -I/usr/local/src/oppresso/rt-3.8.4/lib -I/ngs/app/rt/
> oppresso/rt-3.8.4/lib -I/ngs/app/rt/oppresso/rt-3.8.4/local/plugins/
> RT-FM/lib -I/ngs/app/rt/oppresso/rt-3.8.4/local/plugins/RT-IR/lib -
> e 'RT::LoadConfig(); RT::Init(); my $u = RT::User-
> >new($RT::SystemUser); $u->Load("root"); $u-
> >setPassword("<my_secret_pass>")'
>
> Undefined subroutine &RT::LoadConfig called at -e line 1.
>
>
> So, without Including the path to Plugins, it complains about "RT/
> FM.pm" which was missing in the Included paths I had the first
> round, and I addressed it above, but it now complains about
> "RT::LoadConfig()", which it should be able to grab from:
>
> /my_above_path_2_RT/lib/RT.pm ........(<<sub LoadConfig {require
> RT::Config .........} >>
> & /my_above_path_2_RT/RT/Config.pm
>
>
> So, why is complaining?
>
> Thanks,
> Behzad
> On Sep 25, 2009, at 10:47 AM, Behzad Mahini wrote:
>
>> ..I also looked at the real mysql log file (i.e., "
>> <serverName>.err"), and that did not reveal any worthy information,
>> besides its timestamp was also as of Aug 30th (again way before my
>> password problem of last night).
>>
>> -Behzad
>> On Sep 25, 2009, at 10:25 AM, Behzad Mahini wrote:
>>
>>>
>>> 1) Systemlog & MySQL log points:
>>> ==========================
>>> system.log file:
>>>
>>> RT[350]: FAILED LOGIN for root from xx.xx.xx.xx (/some_dir_xx//
>>> share/html/autohandler:268)
>>> ..<<which is saying the same thing that my Apache error_log
>>> indicated>>
>>>
>>>
>>> Mysql log files:
>>> The only log files that I have for MySQL are binary log files and
>>> they are:
>>>
>>> mysql-bin.xxx0
>>> mysql-bin.xxx1
>>> ...
>>>
>>> and
>>> ib_logfile0
>>> ib_logfile1
>>>
>>> ..and timestamp associated to these ar as of Aug 30, 2009 (which
>>> way before I started having my password problem of yesterday!)
>>>
>>> 2) I rebooted my box, in the hopes of it clearing up some item
>>> that I am not aware of -- that did not do any good
>>> ===============================================================
>>>
>>> 3) Using the "RecoverRootPassword" Wiki page, I tried to change my
>>> password at the command/Perl level:
>>> =
>>> =
>>> =
>>> =
>>> =
>>> =
>>> =
>>> =
>>> =
>>> =
>>> =
>>> =
>>> =
>>> =
>>> ====================================================================
>>>
>>> perl -I/opt/rt3/local/lib -I/opt/rt3/lib \
>>> -MRT -MRT::User \
>>> -e'RT::LoadConfig();RT::Init(); my $u = RT::User-
>>> >new($RT::SystemUser); $u->Load("root"); $u->SetPassword("secret")'
>>> that did not help either, and I got the following complaint:
>>>
>>> Change of config option 'MaxInlineBody' at /ngs/app/rt/oppresso/
>>> rt-3.8.4/local/plugins/RT-IR/etc/RTIR_Config.pm line 13 has been
>>> ignored. It's may be ok, but we want you to be aware. This option
>>> earlier has been set in /ngs/app/rt/oppresso/rt-3.8.4/etc/
>>> RT_SiteConfig.pm line 152. at /usr/local/src/oppresso/rt-3.8.4/lib/
>>> RT/Config.pm line 738.
>>>
>>> Change of config option 'Active_MakeClicky' at /ngs/app/rt/
>>> oppresso/rt-3.8.4/local/plugins/RT-IR/etc/RTIR_Config.pm line 263
>>> has been ignored. It's may be ok, but we want you to be aware.
>>> This option earlier has been set in /ngs/app/rt/oppresso/rt-3.8.4/
>>> etc/RT_SiteConfig.pm line 186. at /usr/local/src/oppresso/rt-3.8.4/
>>> lib/RT/Config.pm line 738.
>>>
>>> [Fri Sep 25 16:59:45 2009] [crit]: Can't locate RT/FM.pm in @INC
>>> (@INC contains: /usr/local/src/oppresso/rt-3.8.4/lib /ngs/app/rt/
>>> oppresso/rt-3.8.4/lib /Library/Perl/Updates/5.8.8/darwin-thread-
>>> multi-2level /Library/Perl/Updates/5.8.8 /System/Library/Perl/
>>> 5.8.8/darwin-thread-multi-2level /System/Library/Perl/5.8.8 /
>>> Library/Perl/5.8.8/darwin-thread-multi-2level /Library/Perl/5.8.8 /
>>> Library/Perl /Network/Library/Perl/5.8.8/darwin-thread-
>>> multi-2level /Network/Library/Perl/5.8.8 /Network/Library/Perl /
>>> System/Library/Perl/Extras/5.8.8/darwin-thread-multi-2level /
>>> System/Library/Perl/Extras/5.8.8 /Library/Perl/5.8.6 /Library/Perl/
>>> 5.8.1 .) at /usr/local/src/oppresso/rt-3.8.4/lib/RT.pm line 627. (/
>>> usr/local/src/oppresso/rt-3.8.4/lib/RT.pm:377)
>>>
>>> Can't locate RT/FM.pm in @INC (@INC contains: /usr/local/src/
>>> oppresso/rt-3.8.4/lib /ngs/app/rt/oppresso/rt-3.8.4/lib /Library/
>>> Perl/Updates/5.8.8/darwin-thread-multi-2level /Library/Perl/
>>> Updates/5.8.8 /System/Library/Perl/5.8.8/darwin-thread-
>>> multi-2level /System/Library/Perl/5.8.8 /Library/Perl/5.8.8/darwin-
>>> thread-multi-2level /Library/Perl/5.8.8 /Library/Perl /Network/
>>> Library/Perl/5.8.8/darwin-thread-multi-2level /Network/Library/
>>> Perl/5.8.8 /Network/Library/Perl /System/Library/Perl/Extras/5.8.8/
>>> darwin-thread-multi-2level /System/Library/Perl/Extras/5.8.8 /
>>> Library/Perl/5.8.6 /Library/Perl/5.8.1 .) at /usr/local/src/
>>> oppresso/rt-3.8.4/lib/RT.pm line 627.
>>>
>>>
>>> -Behzad
>>> On Sep 25, 2009, at 9:46 AM, Jesse Vincent wrote:
> _______________________________________________
> http://lists.bestpractical.com/cgi-bin/mailman/listinfo/rt-users
>
> Community help: http://wiki.bestpractical.com
> Commercial support: sales at bestpractical.com
>
>
> Discover RT's hidden secrets with RT Essentials from O'Reilly Media.
> Buy a copy at http://rtbook.bestpractical.com
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.bestpractical.com/pipermail/rt-users/attachments/20090925/ec1c4982/attachment.htm>
More information about the rt-users
mailing list