[Freeipa-users] /var/log/dirsrv/slapd-* permissions
Rich Megginson
rmeggins at redhat.com
Fri May 13 15:38:42 UTC 2011
On 05/13/2011 09:37 AM, Adam Young wrote:
> On 05/13/2011 06:11 AM, Charlie Derwent wrote:
>> Hi
>>
>> First time posting on the mailing list so go easy on me :-)
>>
>> I've installed freeipa on our network and noticed that no real user
>> owns the folders /var/log/dirsrv/slapd-PKI-IPA and
>> /var/log/dirsrv/slapd-TEST-NET. Isn't this going to cause logrotate
>> errors? I have a feeling this came about because I installed freeipa
>> then had to uninstall it, then re-installed it again and the UID and
>> GID's I'm seeing may have been the previous pkisrv and dirsrv
>> users/groups. If this is true can I just manually chown the
>> directories and if so what permissions should I set?
>
> That is not the normal state of things. They should be owned by the
> dirsrv user and group. Since the dirsrv user is responsible for
> writing to these files, creating the directories etc, I would not
> think you would have a usable install if this is not set up
> correctly. id you do ps -ef | grep dirsrv, what user is running those
> processes?
Also, 389 does not use logrotate, it has its own log rotation policies
based on age, size, etc.
See
http://docs.redhat.com/docs/en-US/Red_Hat_Directory_Server/8.2/html-single/Administration_Guide/index.html#Configuring_Logs
>
>>
>> Thanks
>> Charlie
>>
>>
>> _______________________________________________
>> Freeipa-users mailing list
>> Freeipa-users at redhat.com
>> https://www.redhat.com/mailman/listinfo/freeipa-users
>
>
> _______________________________________________
> Freeipa-users mailing list
> Freeipa-users at redhat.com
> https://www.redhat.com/mailman/listinfo/freeipa-users
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20110513/a6db6b1a/attachment.htm>
More information about the Freeipa-users
mailing list