[Date Prev][Date Next]
Re: (ITS#3960) slaptest changes ownership of ldap-data files
Yes, the user should simply run slaptest(8) (and other slap
tools) under the same userid that slapd(8) will be ran as.
At 06:38 PM 8/22/2005, firstname.lastname@example.org wrote:
>I am unable to reproduce this behavior. I see that if the BDB
>environment has not yet been created, then the environment files will be
>owned by whichever user causes them to be created. But once the files
>exist, their ownership does not get changed.
>So you should make sure that root is not the first user to touch the
>database if the environment has not yet been created. This ITS will be
>> Full_Name: Perry Nguyen
>> Version: 2.3.6
>> OS: Linux FC4
>> URL: ftp://ftp.openldap.org/incoming/
>> Submission from: (NULL) (184.108.40.206)
>> This is what happens after I run slaptest on OpenLDAP 2.3.6, presumably it
>> happens with prior 2.3 versions as well. (Obviously, I am running slaptest as
>> slapd will fail to start with these files owned by root.
>> This problem did not occur with 2.2 versions.
>> The current workaround in my initscript is to change ownership on the file back
>> to ldap.ldap after slaptest is run.
>> [root@ares ldap]# ls -l /var/lib/ldap
>> total 884
>> -rw-r--r-- 1 ldap ldap 4096 Aug 22 10:00 alock
>> -rw------- 1 ldap ldap 16384 Aug 22 09:24 cn.bdb
>> -rw------- 1 root root 24576 Aug 22 10:00 __db.001
>> -rw------- 1 root root 32776192 Aug 22 10:00 __db.002
>> -rw------- 1 root root 2359296 Aug 22 10:00 __db.003
>> -rw------- 1 root root 450560 Aug 22 10:00 __db.004
>> -rw------- 1 root root 24576 Aug 22 10:00 __db.005
> -- Howard Chu
> Chief Architect, Symas Corp. http://www.symas.com
> Director, Highland Sun http://highlandsun.com/hyc
> OpenLDAP Core Team http://www.openldap.org/project/