[Pkg-openldap-devel] Upload to fix the slurpd spool directory or ?
Matthijs Mohlmann
matthijs at cacholong.nl
Wed May 24 22:02:25 UTC 2006
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hi,
It's I think a pretty important bug to have fixed in the archive. (the
slurpd in the right directory) Do you think this will be important
enough for an upload ?
Ok, next thing on the schedule.
slapd runs as root and IMO it is better to run it as user. (from
security point of view) The things that needs to be changed to
effectively run as an unprivileged user:
- - Create a user in the preinst script (username ldap?)
- - Purge user in postrm script (when the package is purged)
- - Update debian/slapd.default and set $SLAPD_USER and $SLAPD_GROUP
- - Update debian/slapd.conf and change the argsfile to be in
/var/run/slapd instead of in /var/run.
- - Fix the permissions in the init.d script.
And now the question:
Do we need to fix the permissions in the postinst or in the init.d
script ? IMO in the init.d script so we can check everytime if the
permissions are ok (that will also prevent startup failures)
And after this change it's time to upload to unstable I think. Maybe
after checking a few bugreports.
What do you think ?
Regards,
Matthijs Mohlmann
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.3 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFEdNfx2n1ROIkXqbARAiNOAJsEx8zmfd/u1SBZ1mL8iopiOKRfagCfQYvr
i4lK2IL2/h7pxZ1xBNXLASM=
=KYLe
-----END PGP SIGNATURE-----
More information about the Pkg-openldap-devel
mailing list