Steve Langasek wrote: > On Sun, Jul 30, 2006 at 08:22:33PM +0100, Peter Hicks wrote: > >> slapd.conf is owned by root.root, and chown-ing it to root.openldap fixes >> the problem. > > Is this because the perms on the file are 0640?
Spot on. >> Maybe this should be done by the upgrade script? > > I think there had been discussion before the changes to run slapd as a > non-root user about causing the config file to be read before dropping root > privileges. I think that would be much better than a one-time override of > the admin's file permissions. I second this - providing the config file never needs to be written to by slapd when running, I'd much rather have slapd running as a user unable to modify the config file. Poggs -- Peter Hicks | e: [EMAIL PROTECTED] | g: 0xE7C839F4 | w: www.poggs.com A: Because it destroys the flow of the conversation Q: Why is top-posting bad? -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
