Bug#381788: [Pkg-openldap-devel] Bug#381788: 381788: slapd: TLS
connections fail when running as non-root
Russ Allbery
rra at debian.org
Tue Apr 24 22:26:42 UTC 2007
Jeremy Parrish <jeremyp at msn.econoprint.com> writes:
> I have found a different "workaround". /dev/urandom (and possibly
> /dev/random) needs to be accessible by the user. The default permissions
> appear to be 660. Changing them to 666 or changing the group to openldap
> would fix the issue.
Er, that's weird. What's setting the permissions of /dev/urandom and
/dev/random to 0660?
I don't have an etch system immediately at hand, but sarge and lenny both
have both being world-readable:
windlord:~> dir /dev/*random
crw-rw-rw- 1 root root 1, 8 2007-03-14 19:10 /dev/random
crw-rw-rw- 1 root root 1, 9 2007-03-14 19:10 /dev/urandom
weblogin1:~> dir /dev/*random
crw-rw-rw- 1 root root 1, 8 2005-05-13 18:21 /dev/random
cr--r--r-- 1 root root 1, 9 2006-07-24 08:24 /dev/urandom
The second box is on a 2.4 kernel without udev, so it's been this way for
some time.
--
Russ Allbery (rra at debian.org) <http://www.eyrie.org/~eagle/>
More information about the Pkg-openldap-devel
mailing list