@pato05: Did you add..
ReadWritePaths = /etc/pihole
ReadWritePaths = /srv/http/pihole
...to php-fpm.service
Search Criteria
Package Details: pi-hole-server 5.18.3-4
Package Actions
| Git Clone URL: | https://aur.archlinux.org/pi-hole-server.git (read-only, click to copy) |
|---|---|
| Package Base: | pi-hole-server |
| Description: | The Pi-hole is an advertising-aware DNS/Web server. Arch adaptation for lan wide DNS server. |
| Upstream URL: | https://github.com/pi-hole/pi-hole |
| Keywords: | ad block pi-hole |
| Licenses: | EUPL-1.2 |
| Conflicts: | pi-hole-standalone |
| Submitter: | max.bra |
| Maintainer: | max.bra (graysky) |
| Last Packager: | max.bra |
| Votes: | 112 |
| Popularity: | 0.134716 |
| First Submitted: | 2016-01-13 12:50 (UTC) |
| Last Updated: | 2024-08-10 12:32 (UTC) |
Dependencies (18)
- bc (bc-ghAUR)
- bind-tools (bind-developmentAUR, bind-gitAUR, bind)
- inetutils (inetutils-gitAUR, busybox-coreutilsAUR)
- iproute2 (iproute2-gitAUR, busybox-coreutilsAUR, iproute2-selinuxAUR)
- jq (jq-gitAUR)
- logrotate (logrotate-gitAUR, logrotate-selinuxAUR)
- lsof (lsof-gitAUR)
- netcat (nmap-netcatAUR, openbsd-netcat-gitAUR, gnu-netcat-svnAUR, gnu-netcat, openbsd-netcat)
- perl (perl-gitAUR)
- pi-hole-ftlAUR
- procps-ng (procps-ng-gitAUR, busybox-coreutilsAUR)
- sudo (fake-sudoAUR, polkit-fakesudoAUR, sudo-gitAUR, doas-sudo-shimAUR, doas-sudo-shim-minimalAUR, sudo-hgAUR, sudo-selinuxAUR, fudo-gitAUR)
- git (git-gitAUR, git-glAUR) (make)
- lighttpd (optional) – a secure, fast, compliant and very flexible web-server
- nginx-mainline (nginx-quic-openssl-hgAUR, nginx-quic-libresslAUR) (optional) – lightweight http server
- php-cgi (optional) – CGI and FCGI SAPI for PHP needed only for lighttpd
- php-fpm (optional) – FastCGI process manager for php needed for nginx
- php-sqlite (optional) – sqlite db access for nginx
Required by (2)
- padd-git
- pi-hole-whitelist-git (optional)
Sources (15)
- 01-pihole.conf
- https://raw.githubusercontent.com/max72bra/pi-hole-server-archlinux-customization/master/arch-server-admin-5.21-4.patch
- https://raw.githubusercontent.com/max72bra/pi-hole-server-archlinux-customization/master/arch-server-core-5.18.3-4.patch
- lighttpd.pi-hole.conf
- mimic_basic-install.sh
- mimic_setupVars.conf.sh
- nginx.pi-hole.conf
- pi-hole-gravity.service
- pi-hole-gravity.timer
- pi-hole-logtruncate.service
- pi-hole-logtruncate.timer
- pi-hole-server-admin-5.21.tar.gz
- pi-hole-server-core-5.18.3.tar.gz
- pi-hole.tmpfile
- piholeDebug.sh
xyzabc123 commented on 2020-12-05 18:02 (UTC) (edited on 2020-12-05 18:03 (UTC) by xyzabc123)
pato05 commented on 2020-12-05 17:54 (UTC) (edited on 2020-12-05 17:55 (UTC) by pato05)
Hi! I installed it and did a bit of configuration, everything seems to be working and I can access the web interface (using nginx), but I can't actually edit any of the settings... I gave the http user all the needed permissions, but still, I can't change the settings... Any help?
wdiz commented on 2020-12-04 10:05 (UTC) (edited on 2020-12-04 10:05 (UTC) by wdiz)
@Taijian : Great it works! Sorry i didn't understand it was in the php-fpm.service file..My bad.
Taijian commented on 2020-12-04 09:23 (UTC)
@wdiz: In the end, I just did exactly what I wrote earlier: I simply removed the CapabilityBoundingSet= line in my php-fpm.service file. That fixed the issue for me, after first going through all the other steps that @max.bra kindly walked me through and not finding anything there.
wdiz commented on 2020-12-03 19:52 (UTC) (edited on 2020-12-03 19:53 (UTC) by wdiz)
@Taijian i do have the same issue but i can't manage to fix it. Can tell me more about files you modified ? Thx
max.bra commented on 2020-12-02 11:04 (UTC)
@Taijian glad you solved. see you next time. :-)
Taijian commented on 2020-12-02 11:02 (UTC)
@max.bra @setboolean: Thank you both for your help, I finally figured it out... Turns out, my php-fpm.service drop-in was too restrictive in the rights I was granting that service. It used to work with the restrictions in place, but now that it was trying to execute lsof with sudo, it no longer did because that got blocked by my CapabilityBoundingSet= settings. I commented that out and now it works again.
So, the important part for everyone reading this and the maintainers: The problem was entirely on my end, nothing to worry about for everyone else. Thank you again for the help!
xyzabc123 commented on 2020-12-02 10:52 (UTC) (edited on 2020-12-02 10:53 (UTC) by xyzabc123)
@Taijian @max.bra Hmmm strange, if pihole status and the API api.php?summaryRaw both report enabled the sudoers file should work as expected.
max.bra commented on 2020-12-02 10:50 (UTC) (edited on 2020-12-02 10:53 (UTC) by max.bra)
@Taijian or better: is your final part of your /etc/sudoers lihe this?
## Read drop-in files from /etc/sudoers.d
@includedir /etc/sudoers.d
edit: darn markdown!!
max.bra commented on 2020-12-02 10:46 (UTC)
@Taijian: no no no, http user cannot lsof directly, by web interface exec pihole script with sudo. is your sudoers.d/pihole over there?
Pinned Comments
max.bra commented on 2018-02-09 16:45 (UTC) (edited on 2019-10-18 23:14 (UTC) by max.bra)
ArchLinux Pi-hole is not officially supported by Pi-hole project. In case of bugs and malfunctions please DO NOT file a report upstream.
First of all check if the wiki (https://wiki.archlinux.org/index.php/Pi-hole) can help then ask here for assistance and tips.
When it will be excluded that the problem does not depend on ArchLinux we will file a bug upstream.