On Wed, Aug 17, 2016 at 12:23:17PM +0200, Fabiano FidĂȘncio wrote: > Jakub, > > On Tue, Aug 16, 2016 at 8:29 PM, Jakub Hrozek <jhro...@redhat.com> wrote: > > On Tue, Aug 16, 2016 at 05:01:55PM +0200, Jakub Hrozek wrote: > >> To test, run: > >> rpm -qf /var/lib/sss/secrets/ > >> the directory was unowned before and should be owned by sssd-common now. > > > > CI: http://sssd-ci.duckdns.org/logs/job/51/74/summary.html > > > > By the way Fabiano asked on IRC why I owned the directory as root.root > > and not sssd.sssd. The reasons are: > > - this is compatible with how the SECDB directory is created in > > Makefile.am > > - we never tested (AFAIK) the secrets responder as non-root > > - the secrets should be accessible to root mostly anyway > > _______________________________________________ > > sssd-devel mailing list > > sssd-devel@lists.fedorahosted.org > > https://lists.fedorahosted.org/admin/lists/sssd-devel@lists.fedorahosted.org > > I wonder if your patch also doesn't solve: > https://fedorahosted.org/sssd/ticket/3125 > Can you check and, if it does, mention it in the commit message?
No, that's a separate bug. _______________________________________________ sssd-devel mailing list sssd-devel@lists.fedorahosted.org https://lists.fedorahosted.org/admin/lists/sssd-devel@lists.fedorahosted.org
