You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I'm not sure if this is the correct place to be logging these two items so apologies if it isn't.
I came across two minor issues during some recent Netbox installations on RedHat RHEL 9.4.
The first related to the build of Linux that we have having had a variety of hardening measures applied. One of these was a system-wide umask setting of 0027 rather than 0022.
This does not highlight itself as an issue until attempting to start Netbox properly.
A umask setting of 0027 causes all installed files to not be world readable.
It would be worth updating the install guide (https://netboxlabs.com/docs/netbox/installation/) to ensure that installers confirm that "umask 0022" is set prior to installation.
The second issue related to performing an HA installation against a clustered PostgreSQL database. On the face of it the "-readonly" switch should avoid attempting to install/update the database schema a second time during the installation of the secondary Netbox instance.
However whilst this is true, using the "-readonly" flag also curtails a later part of the basic code installation. I circumvented this by commenting out the database update line in the installer and reverting it later.
The long term fix would be to ensure that "-readonly" doesn't cause the install script to exit but to simply step over the DB schema upgrade line.
reacted with thumbs up emoji reacted with thumbs down emoji reacted with laugh emoji reacted with hooray emoji reacted with confused emoji reacted with heart emoji reacted with rocket emoji reacted with eyes emoji
Uh oh!
There was an error while loading. Please reload this page.
-
Hi
I'm not sure if this is the correct place to be logging these two items so apologies if it isn't.
I came across two minor issues during some recent Netbox installations on RedHat RHEL 9.4.
The first related to the build of Linux that we have having had a variety of hardening measures applied. One of these was a system-wide umask setting of 0027 rather than 0022.
This does not highlight itself as an issue until attempting to start Netbox properly.
A umask setting of 0027 causes all installed files to not be world readable.
It would be worth updating the install guide (https://netboxlabs.com/docs/netbox/installation/) to ensure that installers confirm that "umask 0022" is set prior to installation.
The second issue related to performing an HA installation against a clustered PostgreSQL database. On the face of it the "-readonly" switch should avoid attempting to install/update the database schema a second time during the installation of the secondary Netbox instance.
However whilst this is true, using the "-readonly" flag also curtails a later part of the basic code installation. I circumvented this by commenting out the database update line in the installer and reverting it later.
The long term fix would be to ensure that "-readonly" doesn't cause the install script to exit but to simply step over the DB schema upgrade line.
Thanks for a great product
John
Beta Was this translation helpful? Give feedback.
All reactions