./nodebb setup Permission denied


  • @wojciech-lisik said in ./nodebb setup Permission denied:

    @pitaj if thats the case, than how on Earth installer is going to modify system files?

    The setup process doesn't need to modify system files.


  • Installer puts *.js into /usr/ and ls -alh /usr gives root:root as an owner, so......

  • Global Moderator Plugin & Theme Dev

    @wojciech-lisik what does what exactly? Every file created by NodeBB is purely relative to the installation directory (wherever you git cloned).

  • GNU/Linux Admin

    As @pitaj is advocating, you should not be running or installing NodeBB as root.

    As a root user (or using sudo), fix the permissions by running the following chown -R myuser:myuser /path/to/nodebb, replacing myuser and the path to NodeBB as necessary.

    Then drop out of root and resume setup ./nodebb setup

  • Community Rep

    @julian Honestly, I wouldn't chmod, just delete and reinstall (or move) in a more appropriate location, and then adjust permissions (if still necessary).

    @Wojciech-Lisik You shouldn't install programs in /usr/, but rather something more like /usr/local/opt/ or, ideally, some subdirectory under your user's home directory (for development). If you're setting up a production server, you'd want to create some directory structure under /etc/ owned by a special, non-root user with the least privilege possible. Most of my setups follow the paradigm of storing server files hosted by NGINX under /usr/share/nginx/ and setting rwx privileges to the special user I set up only in that folder.

    You should never have to use sudo or the root login to install nodebb (or any other web software, for that matter), and doing so can be a huge security risk.

    Here's a neat Superuser answer that outlines what the intended usage of each folder in a *nix machine is for.


  • @bri said in ./nodebb setup Permission denied:

    @julian Honestly, I wouldn't chmod, just delete and reinstall (or move) in a more appropriate location, and then adjust permissions (if still necessary).

    @Wojciech-Lisik You shouldn't install programs in /usr/, but rather something more like /usr/local/opt/ or, ideally, some subdirectory under your user's home directory (for development). If you're setting up a production server, you'd want to create some directory structure under /etc/ owned by a special, non-root user with the least privilege possible. Most of my setups follow the paradigm of storing server files hosted by NGINX under /usr/share/nginx/ and setting rwx privileges to the special user I set up only in that folder.

    You should never have to use sudo or the root login to install nodebb (or any other web software, for that matter), and doing so can be a huge security risk.

    Here's a neat Superuser answer that outlines what the intended usage of each folder in a *nix machine is for.

    Nice write but really dont even try to teach me how things should be done in IT. I have setup 1k+ servers in my career and I really have indepth knowledge of how public-facing server should be architectured.

    @julian @PitaJ and other wise-heads :: how installer is supposed to write sth to folder which access to is limited by permissions? The only way is to use sudo and change ownership of installed file/s aftewards.

  • GNU/Linux Admin

    Which part of "as a root user (or use sudo)" didn't you understand?

    Instead of harping on about the "1k+" servers you've set up, how about you respect your fellow community members and stop being an ass.

  • Community Rep

    @wojciech-lisik said in ./nodebb setup Permission denied:

    I really have indepth knowledge of how public-facing server should be architectured.

    You obviously don’t. And now I fear for the customers of those 1k+ servers you’ve set up.

    You don’t happen to work for Equifax, do you?


  • @bri said in ./nodebb setup Permission denied:

    @wojciech-lisik said in ./nodebb setup Permission denied:

    I really have indepth knowledge of how public-facing server should be architectured.

    You obviously don’t. And now I fear for the customers of those 1k+ servers you’ve set up.

    You don’t happen to work for Equifax, do you?

    No, I dont work for Equifax.... I work for completely different company.
    Nothing to fear about, trust me 🙂


  • @julian and this is enough. Im done with any type of conversation with you.
    In addition to this :: I will not contribute any of my asset (time/code/whatever you think I have) to NodeBB.

Suggested Topics

| |