Bug #60752 mysqlmonitoragent rpm ships / with wrong permissions
Submitted: 4 Apr 2011 13:10 Modified: 5 Apr 2011 8:01
Reporter: Daniël van Eeden Email Updates:
Status: Won't fix Impact on me:
None 
Category:MySQL Enterprise Monitor: Agent Severity:S1 (Critical)
Version:2.3.1.2044 OS:Linux (Red Hat Enterprise Linux 5)
Assigned to: CPU Architecture:Any
Tags: rpm

[4 Apr 2011 13:10] Daniël van Eeden 
Description:
The rpm for mysqlmonitoragent ships the "/" file while it shouldn't. It also ships this file with the wrong permissions (775 instead of 755). This will break sendmail on RHEL5.

How to repeat:
# rpm -qf /
filesystem-2.4.0-3.el5
mysqlmonitoragent-2.3.1.2044-0
# rpm -qvl mysqlmonitoragent-2.3.1.2044-0 | head -1
drwxrwxr-x    2 root    root                0 Nov 25 01:51 /
# rpm -qvl filesystem-2.4.0-3.el5 | head -1
drwxr-xr-x    2 root    root                0 Oct  1  2009 /
# echo test | mail -s test user@example.com
# /etc/mail/submit.cf: line 544: fileclass: cannot open '/etc/mail/trusted-users': Group writable directory

# ls -ld /etc/mail/trusted-users /etc/mail /etc /
drwxrwxr-x 24 root root 4096 Nov 25 01:51 /
drwxr-xr-x 79 root root 4096 Mar 30 10:30 /etc
drwxr-xr-x  2 root root 4096 Apr  4 14:29 /etc/mail
-rw-r--r--  1 root root  127 Jan 22  2010 /etc/mail/trusted-users

Suggested fix:
DO NOT ship "/" in the RPM.
[4 Apr 2011 13:10] Daniël van Eeden 
Source for this RPM: V23981-01.zip from https://edelivery.oracle.com
[5 Apr 2011 8:01] Valeriy Kravchuk 
I do not see V23981-01.zip at https://edelivery.oracle.com now, and probably for a good reason. As far as I was informed, inclusion of RPM for agent was a mistake, as it was buggy. This problem is now fixed: for version 2.3.2 RPM is not included.