Fix permissions of server after accidental chmod debian

Solution 1

comment from LasVegasCoder from the other forum i posted to by mistake:

Fixing Permission Error

How to restore root directory permission to default?

Rule #1: If you are not comfortable with command lines, do not run any command as root.

Running chmod -R 777 / as root will break your system.

Running rm -rf / as root will result in a disaster!.

If you've ran chmod -R 777 / as root, follow these steps to restore it back:

Step 1:

Copy the following script, paste it on your console to generate fixpermission script

echo '
chmod -R 755 /bin /boot /dev /etc/ /home /lib /lib64 \
/media /mnt /opt /run /sbin /srv /usr /var

chmod -R 777 /initrd.img /vmlinuz
chmod -R 1777 /tmp
chmod -R 555 /sys
chmod -R 555 /proc
chmod -R 700 /root

' > fixpermission

chmod +x fixpermission

./fixpermission

The above will create a script named fixpermission and run it by ./fixpermission if not already invoked.

Step 2:

Run stat -c '%A %a %n' /* to show your proper directory and their permission as restored.

Example: Your directory permission structure should look similar to the following:

root@plab:~# stat -c '%A %a %n' /*
drwxr-xr-x 755 /bin
drwxr-xr-x 755 /boot
drwxr-xr-x 755 /dev
drwxr-xr-x 755 /etc
drwxr-xr-x 755 /home
lrwxrwxrwx 777 /initrd.img
lrwxrwxrwx 777 /initrd.img.old
drwxr-xr-x 755 /lib
drwxr-xr-x 755 /lib64
drwx------ 700 /lost+found
drwxr-xr-x 755 /media
drwxr-xr-x 755 /mnt
drwxr-xr-x 755 /opt
dr-xr-xr-x 555 /proc
drwx------ 700 /root
drwxr-xr-x 755 /run
drwxr-xr-x 755 /sbin
drwxr-xr-x 755 /srv
dr-xr-xr-x 555 /sys
drwxrwxrwt 1777 /tmp
drwxr-xr-x 755 /usr
drwxr-xr-x 755 /var
lrwxrwxrwx 777 /vmlinuz
lrwxrwxrwx 777 /vmlinuz.old

Step 3:

Reboot your system!

Hope this helps.

Solution 2

If this is a system you have physical access to, you could just mount its drive on to another running, working system and at the very least copy any data you want to save off of it. This is probably the safest and most reliable means of recovery of just the data itself.

You could also find the permissions of a working system (ideally of the exact same OS version and with the exact same packages installed on it) and change the permissions of the broken system to match it -- again, this is most easily done if you can mount the broken system's drive on to a working system, but it might also be possible to do if the system is remote and you can still ssh in to it, become root and chmod.

Note: Before doing anything, I recommend doing a full backup of the broken system (again, this is most easily done if you have physical access to it). If anything goes wrong, make a fresh copy from your backup and try again on the copy, keeping your original backup untouched so it can be restored from again if there's another mistake.

On the working system, you should be able to create a null-separated list of files and working permissions like this:

# find / -name '*' -printf '%m %p\0' > working-permissions.txt

Sidenote: It's null-separated because it's most likely you don't have any filenames with nulls in them, so it's safer to separate them like this rather than using newlines (you still aren't likely to have filenames with newlines in them, but better safe than sorry, and null-separation is safer).

Take a look at the output of xargs --null -n1 --arg-file=working-permissions.txt echo | less to make sure the permissions and filenames look sane. If they do, you now have a choice of ways to proceed:

Option 1:

If you can still log in to the broken system and can become root, you could try copying the working-permissions.txt file to the broken system and when logged in to the broken system run:

# perl -0ne '$_ =~ m{^(\d*\d\d\d) (.*)\0$} ; print "chmod $1 $2\n" ; chmod oct($1), $2 ;' working-permissions.txt

Option 2:

You could mount the disk from the broken system on to the working system. Now you will need to change the perl command above to reflect where you've mounted it. For example, if you've mounted it on /mnt/broken, you'd do:

# perl -0ne '$_ =~ m{^(\d*\d\d\d) (.*)\0$} ; print "chmod $1 $2\n" ; chmod oct($1), "/mnt/broken/$2" ;' working-permissions.txt

The perl script will now change permissions in /mnt/broken.

Note: Option 2 is actually more dangerous to the working system (in case there's a mistake in the script). So when you're ready to run the perl script to change permissions, I suggest you use a LiveDVD or USB drive to first boot the working system, and don't have any drives except the broken system's drive connected to it.

Finally, once you've got your broken system working again, make frequent backups so that if any catastrophe hits it again, you'll be able to just restore from backup and move on.

Solution 3

Really, if you backed up the settings & data files and then did a fresh install & restore files (with correct permissions, should be easy for just those files, matching the default directory may be good enough), that's probably the easiest. But you said the server's broken anyway, so even after fixing the permissions it'll still be broken, so why bother? Just re-install.

I don't know how your server's set up or where the data is, but that should be easy for you to search the web for yourself, and it really should be step one in making a backup anyway.

If you really want a list of file permissions, you can do a separate fresh install (even to a VM) and compare it to your current broken install, then adjust as necessary.

Related videos on Youtube

09 : 44

EXPLAINED: How to use "chmod" command [COMPLETE GUIDE]

XPSTECH

128451

13 : 37

7. Linux - Change permissions of files, directories using "chmod" commands

AKS H

822

02 : 09

How to remove/fix " Permission Denied" in linux (Ubuntu,Linux Mint,Fedora)?

Sourav Ghosh

229

04 : 50

Fix permissions of server after accidental chmod debian (3 Solutions!!)

Roel Van de Paar

24

03 : 03

Fix permissions of server after accidental chmod

Roel Van de Paar

12

Author by

kaioker2

Updated on September 18, 2022