[Date Prev][Date Next] [Chronological] [Thread] [Top]

ldapdb and ldapi:/// (unix socket connection) file permissions

To: OpenLDAP <openldap-software@OpenLDAP.org>, Cyrus-SASL <cyrus-sasl@lists.andrew.cmu.edu>
Subject: ldapdb and ldapi:/// (unix socket connection) file permissions
From: Edward Rudd <eddie@omegaware.com>
Date: 04 Jun 2003 19:29:52 -0500
Organization:

I've found the problem with this..
OpenLDAP creates the unix domain sockets with the permissions 600 which
has the lovely side effect of not being able to be used by cyrus-imapd
OR postfix (via cyrus-sasl) due to the fact that both run as a NON root
user..
Is there an easy way to change the default permissions and groups
ownership that this socket gets created? So that I could create a
"shadow" group that cyrus and postix belong to.. (I am assuming there is
a good security reason as to why that file was created read/writable by
root only)
Thanks..

-- 
Edward Rudd <eddie@omegaware.com>

Follow-Ups:
- RE: ldapdb and ldapi:/// (unix socket connection) file permissions
  - From: "Howard Chu" <hyc@highlandsun.com>

Prev by Date: Fwd: ldap auth for resources
Next by Date: RE: Aliases status for openldap 2.1.x + back-bdb
Index(es):
- Chronological
- Thread