projects / openldap.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 1b22d43) | patch
index-files-created-as-root
authorDebian OpenLDAP Maintainers <pkg-openldap-devel@lists.alioth.debian.org>
Fri, 28 Jul 2017 01:04:41 +0000 (02:04 +0100)
committerRyan Tandy <ryan@nardis.ca>
Fri, 28 Jul 2017 01:04:41 +0000 (02:04 +0100)
commit61b25659e77a8bb0c2a894faf59a20e70ddb95ab
tree2bfb08da6167e100c571e031241c8be62453b626tree | snapshot
parent1b22d43c08e3e4c6e8b515d21292ee3f2d19d6adcommit | diff
index-files-created-as-root

Document in the man page that slapindex should be run as the same user
as slapd, and print a warning if it's run as root (since Debian defaults
to running slapd as openldap).

Not suitable for upstream in this form.  This patch needs to be reworked
to check the BerkeleyDB database ownership and only warn if running as
root with a database that's not owned by root.

Upstream ITS #5356 filed requesting better handling of this.  Current
upstream discussion leans towards putting the check into the database
backend and aborting if slapd is run as a different user than the database
owner, which is an even better fix.

Gbp-Pq: Name index-files-created-as-root
doc/man/man8/slapindex.8 diff | blob | history
servers/slapd/slapindex.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.