[squid-users] WARNING: no_suid: setuid(0): (1) Operation not permitted

Hello there,

we are receiving warnings after upgrading squid from version 3.1 to 3.2 on FreeBSD. Squid appears to be fully operational though.

The warnings seem to be relative to starting the helpers and opening the log files, but the helpers are started and the log files written to.

# squid -Nd1
2013/01/31 09:56:47| Starting Squid Cache version 3.2.6 for amd64-portbld-freebsd9.0...
2013/01/31 09:56:47| Process ID 16038
2013/01/31 09:56:47| Process Roles: master worker
2013/01/31 09:56:47| With 11095 file descriptors available
2013/01/31 09:56:47| Initializing IP Cache...
2013/01/31 09:56:47| DNS Socket created at [::], FD 5
2013/01/31 09:56:47| DNS Socket created at 0.0.0.0, FD 6
2013/01/31 09:56:47| Adding domain xxx.xxx from /etc/resolv.conf
2013/01/31 09:56:47| Adding nameserver x.x.x.x from /etc/resolv.conf
2013/01/31 09:56:47| Adding nameserver x.x.x.x from /etc/resolv.conf
2013/01/31 09:56:47| helperOpenServers: Starting 5/20 'ntlm_auth' processes
2013/01/31 09:56:47| WARNING: no_suid: setuid(0): (1) Operation not permitted
2013/01/31 09:56:47| WARNING: no_suid: setuid(0): (1) Operation not permitted
2013/01/31 09:56:47| WARNING: no_suid: setuid(0): (1) Operation not permitted
2013/01/31 09:56:47| WARNING: no_suid: setuid(0): (1) Operation not permitted
2013/01/31 09:56:47| WARNING: no_suid: setuid(0): (1) Operation not permitted
2013/01/31 09:56:47| helperOpenServers: Starting 2/10 'ntlm_auth' processes
2013/01/31 09:56:47| WARNING: no_suid: setuid(0): (1) Operation not permitted
2013/01/31 09:56:47| WARNING: no_suid: setuid(0): (1) Operation not permitted
2013/01/31 09:56:47| helperOpenServers: Starting 0/5 'ntlm_auth' processes
2013/01/31 09:56:47| helperOpenServers: No 'ntlm_auth' processes needed.
2013/01/31 09:56:47| helperOpenServers: Starting 5/5 'ext_wbinfo_group_acl' processes
2013/01/31 09:56:47| WARNING: no_suid: setuid(0): (1) Operation not permitted
2013/01/31 09:56:47| WARNING: no_suid: setuid(0): (1) Operation not permitted
2013/01/31 09:56:47| WARNING: no_suid: setuid(0): (1) Operation not permitted
2013/01/31 09:56:47| WARNING: no_suid: setuid(0): (1) Operation not permitted
2013/01/31 09:56:47| WARNING: no_suid: setuid(0): (1) Operation not permitted
2013/01/31 09:56:47| Logfile: opening log daemon:/var/log/squid/access.log
2013/01/31 09:56:47| Logfile Daemon: opening log /var/log/squid/access.log
2013/01/31 09:56:47| WARNING: no_suid: setuid(0): (1) Operation not permitted
2013/01/31 09:56:47| WARNING: no_suid: setuid(0): (1) Operation not permitted
2013/01/31 09:56:47| Unlinkd pipe opened on FD 36
2013/01/31 09:56:47| Store logging disabled
2013/01/31 09:56:47| Swap maxSize 10240000 + 262144 KB, estimated 807857 objects
2013/01/31 09:56:47| Target number of buckets: 40392
2013/01/31 09:56:47| Using 65536 Store buckets
2013/01/31 09:56:47| Max Mem size: 262144 KB
2013/01/31 09:56:47| Max Swap size: 10240000 KB
2013/01/31 09:56:47| Rebuilding storage in /cache (clean log)
2013/01/31 09:56:47| Using Least Load store dir selection
2013/01/31 09:56:47| Set Current Directory to /cache
2013/01/31 09:56:47| Loaded Icons.
2013/01/31 09:56:47| HTCP Disabled.
2013/01/31 09:56:47| Squid plugin modules loaded: 0
2013/01/31 09:56:47| Accepting HTTP Socket connections at local=[::]:3128 remote=[::] FD 39 flags=9
2013/01/31 09:56:47| Store rebuilding is 0.71% complete
2013/01/31 09:56:49| Done reading /cache swaplog (564926 entries)
2013/01/31 09:56:49| Finished rebuilding storage from disk.
2013/01/31 09:56:49| 564926 Entries scanned
2013/01/31 09:56:49| 0 Invalid entries.
2013/01/31 09:56:49| 0 With invalid flags.
2013/01/31 09:56:49| 564926 Objects loaded.
2013/01/31 09:56:49| 0 Objects expired.
2013/01/31 09:56:49| 0 Objects cancelled.
2013/01/31 09:56:49| 0 Duplicate URLs purged.
2013/01/31 09:56:49| 0 Swapfile clashes avoided.
2013/01/31 09:56:49| Took 2.30 seconds (245412.47 objects/sec).
2013/01/31 09:56:49| Beginning Validation Procedure
2013/01/31 09:56:50| 262144 Entries Validated so far.
2013/01/31 09:56:50| 524288 Entries Validated so far.
2013/01/31 09:56:50| Completed Validation Procedure
2013/01/31 09:56:50| Validated 564921 Entries
2013/01/31 09:56:50| store_swap_size = 9215336.00 KB
2013/01/31 09:56:50| storeLateRelease: released 0 objects

# uname -a
FreeBSD hostname 9.0-RELEASE-p3 FreeBSD 9.0-RELEASE-p3 #0: Tue Jun 12 02:52:29 UTC 2012 root_at_amd64-builder.daemonology.net:/usr/obj/usr/src/sys/GENERIC amd64

# squid -v
Squid Cache: Version 3.2.6
configure options: '--with-default-user=squid' '--bindir=/usr/local/sbin' '--sbindir=/usr/local/sbin' '--datadir=/usr/local/etc/squid'
'--libexecdir=/usr/local/libexec/squid' '--localstatedir=/var/squid' '--sysconfdir=/usr/local/etc/squid' '--with-logdir=/var/log/squid'
'--with-pidfile=/var/run/squid/squid.pid' '--enable-auth' '--enable-build-info' '--enable-loadable-modules' '--enable-removal-policies=lru heap' '--disable-epoll'
'--disable-linux-netfilter' '--disable-linux-tproxy' '--disable-translation' '--enable-auth-basic=DB MSNT MSNT-multi-domain NCSA PAM POP3 RADIUS fake getpwnam LDAP SMB
NIS' '--enable-auth-digest=file' '--enable-external-acl-helpers=file_userip unix_group LDAP_group wbinfo_group' '--enable-auth-negotiate=kerberos wrapper'
'--enable-auth-ntlm=fake smb_lm' '--enable-storeio=diskd rock ufs aufs' '--enable-disk-io=AIO Blocking DiskDaemon IpcIo Mmapped DiskThreads'
'--enable-log-daemon-helpers=file' '--enable-url-rewrite-helpers=fake' '--enable-delay-pools' '--enable-htcp' '--disable-forw-via-db' '--disable-cache-digests'
'--enable-wccp' '--enable-wccpv2' '--disable-eui' '--disable-ipfw-transparent' '--disable-pf-transparent' '--disable-ipf-transparent' '--disable-follow-x-forwarded-for'
'--disable-ecap' '--disable-icap-client' '--disable-esi' '--enable-kqueue' '--prefix=/usr/local' '--mandir=/usr/local/man' '--infodir=/usr/local/info/'
'--build=amd64-portbld-freebsd9.0' 'build_alias=amd64-portbld-freebsd9.0' 'CC=cc' 'CFLAGS=-O2 -pipe -I/usr/local/include -DLDAP_DEPRECATED -fno-strict-aliasing' 'LDFLAGS=
-L/usr/local/lib -pthread' 'CPPFLAGS=' 'CXX=c++' 'CXXFLAGS=-O2 -pipe -I/usr/local/include -DLDAP_DEPRECATED -fno-strict-aliasing' 'CPP=cpp' --enable-ltdl-convenience

# cat squid.conf
auth_param negotiate program /usr/local/bin/ntlm_auth --helper-protocol=gss-spnego
auth_param negotiate children 20 startup=5 idle=2
auth_param negotiate keep_alive on

auth_param ntlm program /usr/local/bin/ntlm_auth --helper-protocol=squid-2.5-ntlmssp
auth_param ntlm children 10 startup=2 idle=1

auth_param basic program /usr/local/bin/ntlm_auth --helper-protocol=squid-2.5-basic
auth_param basic children 5 startup=0 idle=1
auth_param basic realm Trebi Web Proxy
auth_param basic credentialsttl 24 hours

external_acl_type InetGroup %LOGIN /usr/local/libexec/squid/ext_wbinfo_group_acl

# top
  PID USERNAME THR PRI NICE SIZE RES STATE TIME WCPU COMMAND
16290 squid 1 25 0 151M 104M kqread 0:02 4.98% squid
 1146 root 1 20 0 43688K 8016K select 0:01 0.00% snmpd
 1050 root 1 20 0 22332K 3108K select 0:00 0.00% ntpd
 1104 root 1 20 0 70656K 6856K select 0:00 0.00% nmbd
 1176 root 1 20 0 20384K 3968K select 0:00 0.00% sendmail
 1110 root 1 20 0 77348K 10044K select 0:00 0.00% winbindd
16282 root 1 21 0 68016K 5396K sbwait 0:00 0.00% sshd
15471 root 1 21 0 68016K 5396K sbwait 0:00 0.00% sshd
 1107 root 1 20 0 79804K 11196K select 0:00 0.00% smbd
 1117 root 1 20 0 77340K 10480K select 0:00 0.00% winbindd
  946 root 1 20 0 31788K 3216K select 0:00 0.00% kdc
 1186 root 1 39 0 14260K 1696K nanslp 0:00 0.00% cron
15812 root 1 20 0 17668K 2948K pause 0:00 0.00% csh
  853 root 1 1 0 12184K 1608K select 0:00 0.00% syslogd
16298 squid 1 27 0 22156K 3484K sbwait 0:00 0.00% perl5.12.4
16301 squid 1 29 0 22156K 3484K sbwait 0:00 0.00% perl5.12.4
16299 squid 1 27 0 22156K 3484K sbwait 0:00 0.00% perl5.12.4
16302 squid 1 29 0 22156K 3484K sbwait 0:00 0.00% perl5.12.4
16300 squid 1 28 0 22156K 3484K sbwait 0:00 0.00% perl5.12.4
16288 root 1 20 0 17668K 3012K pause 0:00 0.00% csh
16305 root 1 20 0 16700K 2292K RUN 0:00 0.00% top
16292 squid 1 22 0 68228K 6280K sbwait 0:00 0.00% ntlm_auth
16297 squid 1 26 0 68228K 6280K sbwait 0:00 0.00% ntlm_auth
16295 squid 1 25 0 68228K 6280K sbwait 0:00 0.00% ntlm_auth
16296 squid 1 25 0 68228K 6280K sbwait 0:00 0.00% ntlm_auth
16291 squid 1 23 0 68228K 6280K sbwait 0:00 0.00% ntlm_auth
 1121 root 1 20 0 79804K 11164K select 0:00 0.00% smbd
16294 squid 1 24 0 68228K 6280K sbwait 0:00 0.00% ntlm_auth
16293 squid 1 23 0 68228K 6280K sbwait 0:00 0.00% ntlm_auth
16130 root 1 21 0 77332K 10428K select 0:00 0.00% winbindd
  951 root 1 52 0 31828K 3392K select 0:00 0.00% kadmind
16303 squid 1 23 0 19676K 2180K sbwait 0:00 0.00% log_file_daemon
16304 squid 1 31 0 19676K 2116K piperd 0:00 0.00% unlinkd
 1169 root 1 20 0 46876K 4644K select 0:00 0.00% sshd
16132 root 1 20 0 77368K 10108K select 0:00 0.00% winbindd
16131 root 1 20 0 77332K 10416K select 0:00 0.00% winbindd
 1180 smmsp 1 20 0 20384K 3984K pause 0:00 0.00% sendmail
  691 root 1 20 0 10372K 3476K select 0:00 0.00% devd
 1285 root 1 52 0 12184K 1356K ttyin 0:00 0.00% getty
 1284 root 1 52 0 12184K 1356K ttyin 0:00 0.00% getty
 1291 root 1 52 0 12184K 1356K ttyin 0:00 0.00% getty
 1286 root 1 52 0 12184K 1356K ttyin 0:00 0.00% getty
 1287 root 1 52 0 12184K 1356K ttyin 0:00 0.00% getty
 1290 root 1 52 0 12184K 1356K ttyin 0:00 0.00% getty
 1289 root 1 52 0 12184K 1356K ttyin 0:00 0.00% getty
 1288 root 1 52 0 12184K 1356K ttyin 0:00 0.00% getty
  111 root 1 52 0 10060K 1196K pause 0:00 0.00% adjkerntz
Received on Thu Jan 31 2013 - 09:24:38 MST