On 08/24/2011 10:59 PM, Ade Lee wrote:
When I looked at one point, I noticed that /var/log/pki-ca/catalina.out
was owned by root. And in fact the whole /var/log/pki-ca directory was
owned by root.
If the CA process runs as pkiuser, that would explain the permission
denied bit.
/var/log/pki-ca and it's contents should be owned by pkiuser.
However not all copies of catalina.out which get created should be owned
by pkiuser, see:
https://bugzilla.redhat.com/show_bug.cgi?id=693815
The distinction is there is a log file written to by the initscript
before the pki process begins. Doesn't sound like this applies to in
this instance, but just FYI.
--
John Dennis <[email protected]>
Looking to carve out IT costs?
www.redhat.com/carveoutcosts/
_______________________________________________
Freeipa-devel mailing list
[email protected]
https://www.redhat.com/mailman/listinfo/freeipa-devel
