[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: (ITS#5356) Catching index ownership errors

Buchan Milne <bgmilne@staff.telkomsa.net> writes:
> On Thursday 07 February 2008 08:22:12 rra@stanford.edu wrote:

>> One of the most common problems we see in Debian with people new to
>> OpenLDAP is that they run slapindex as root when they're running their
>> directory server as a non-root user and hence break the file ownership
>> and the database.
> Maybe your init script should die if the files and directories aren't
> writable by the user you run slapd as.
> There are more ways (than slapindex) to break file ownership.

There is, and we should probably also do that, but slapindex is far and
away the most common and it would be cool if we could catch the problem
before it happens instead of just warning afterwards.

Russ Allbery (rra@stanford.edu)             <http://www.eyrie.org/~eagle/>