[Pkg-openldap-devel] Bug#381788: 381788: slapd: TLS connections
fail when running as non-root
Roberto C. Sánchez
roberto at connexer.com
Tue Apr 24 22:49:04 UTC 2007
On Tue, Apr 24, 2007 at 05:17:23PM -0500, Jeremy Parrish wrote:
> I also have come upon this bug (or one just like it) in the Etch
> release. This is a brand new install (debootstraped), so there is no
> legacy baggage being pulled along for the ride. It prevents syncrepl
> from working over ldaps when running as the user openldap. Also,
> ldapsearch using ldaps as any unprivileged user fails.
>
> I have found a different "workaround". /dev/urandom (and possibly
> /dev/random) needs to be accessible by the user. The default permissions
> appear to be 660. Changing them to 666 or changing the group to openldap
> would fix the issue.
>
Odd. On my systems that I checked, /dev/random and /dev/urandom have
permissions set to 666 by default.
Regards,
-Roberto
--
Roberto C. Sánchez
http://people.connexer.com/~roberto
http://www.connexer.com
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://lists.alioth.debian.org/pipermail/pkg-openldap-devel/attachments/20070424/38793fdb/attachment-0001.pgp
More information about the Pkg-openldap-devel
mailing list