[Pkg-openldap-devel] Bug#380537: slapd: Fails to start after
upgrade to from 2.3.23 to 2.3.24
Peter Hicks
peter.hicks at poggs.co.uk
Mon Jul 31 06:05:45 UTC 2006
Steve Langasek wrote:
> On Sun, Jul 30, 2006 at 08:22:33PM +0100, Peter Hicks wrote:
>
>> slapd.conf is owned by root.root, and chown-ing it to root.openldap fixes
>> the problem.
>
> Is this because the perms on the file are 0640?
Spot on.
>> Maybe this should be done by the upgrade script?
>
> I think there had been discussion before the changes to run slapd as a
> non-root user about causing the config file to be read before dropping root
> privileges. I think that would be much better than a one-time override of
> the admin's file permissions.
I second this - providing the config file never needs to be written to by slapd
when running, I'd much rather have slapd running as a user unable to modify the
config file.
Poggs
--
Peter Hicks | e: my.name at poggs.co.uk | g: 0xE7C839F4 | w: www.poggs.com
A: Because it destroys the flow of the conversation
Q: Why is top-posting bad?
More information about the Pkg-openldap-devel
mailing list