I have an entry in root's crontab: #ls -1 /etc/RCS|sed "s~\(.*\),v~\1~"|while read file; do ls -la /etc/$file|ci -q -l /etc/$file ;done Error output I received: do_ypcall: clnt_call: RPC: Unable to receive; errno = No route to host YPBINDPROC_DOMAIN: Domain not bound do_ypcall: clnt_call: RPC: Unable to receive; errno = No route to host YPBINDPROC_DOMAIN: Domain not bound do_ypcall: clnt_call: RPC: Unable to receive; errno = No route to host YPBINDPROC_DOMAIN: Domain not bound do_ypcall: clnt_call: RPC: Unable to receive; errno = No route to host YPBINDPROC_DOMAIN: Domain not bound This looks like NIS (DNS?) error output, but what could be invoking anything that uses NIS or DNS in that command? ls, ci, and while don't need it unless they are applied to some NFS mounted file, but this is executed as root with a *local* home directory on *local* files, no need for YP. The only hypotheses I can think of are "my copies of bash or ci have been compromised" or "I am stupid". Enlighten me, please. Dave
On Wed, Jun 21, 2017 at 08:34:43AM -1000, Dave Burns wrote:> This looks like NIS (DNS?) error output, but what could be invoking > anything that uses NIS or DNS in that command? ls, ci, and while don't need > it unless they are applied to some NFS mounted file, but this is executed > as root with a *local* home directory on *local* files, no need for YP. The > only hypotheses I can think of are "my copies of bash or ci have been > compromised" or "I am stupid".Do you have any 'nis' entries in /etc/nsswitch.conf for passwd or group? It might be using NIS to try to look up user/group information on files that have uid/gid numbers that aren't in the local passwd/group files. -- Jonathan Billings <billings at negate.org>
If you have NIS configured, it'll be used by anything that needs to map a uid or gid number to a name, or anything that needs a list of groups for users, among other things. That means (IIRC) that having a crontab implies a NIS lookup, because creating a new session for your user needs to fetch supplementary groups from NIS (even for root). 'ls -l' might also do lookups to resolve the uid/gid of your local files. "local files" does not imply that there is no need for YP.
Thanks, that makes sense. Dave On Wed, Jun 21, 2017 at 10:27 AM, Gordon Messmer <gordon.messmer at gmail.com> wrote:> If you have NIS configured, it'll be used by anything that needs to map a > uid or gid number to a name, or anything that needs a list of groups for > users, among other things. > > That means (IIRC) that having a crontab implies a NIS lookup, because > creating a new session for your user needs to fetch supplementary groups > from NIS (even for root). > > 'ls -l' might also do lookups to resolve the uid/gid of your local files. > "local files" does not imply that there is no need for YP. > > _______________________________________________ > CentOS mailing list > CentOS at centos.org > https://lists.centos.org/mailman/listinfo/centos >-- This email is: [ ] request action [ ] request info [x] fyi [ ] social Response needed: [ ] yes [x] up to you [ ] no Time-sensitive: [ ] immediate [ ] soon [x] none http://www.43folders.com/2005/09/19/writing-sensible-email-messages