2008-04-17 21:29:27 |
Martin Emrich |
bug |
|
|
added bug |
2008-04-28 18:16:37 |
Chuck Short |
cyrus-sasl2: status |
New |
Incomplete |
|
2008-06-06 08:00:47 |
Philipp Kaluza |
cyrus-sasl2: status |
Incomplete |
Confirmed |
|
2008-08-29 18:58:51 |
Mathias Gug |
bug |
|
|
assigned to openldap (Ubuntu) |
2008-08-29 18:59:55 |
Mathias Gug |
openldap2.3: status |
Confirmed |
Invalid |
|
2008-08-29 18:59:55 |
Mathias Gug |
openldap2.3: statusexplanation |
I can confirm this. While this setup doesn't seem too common, it's certainly a valid and supported one.
This needs to be adressed on the slapd side, so reassigning this.
The suggested fix (adduser openldap sasl) is quite simple, won't cause any regressions, but does give the slapd process some more priviledges.
However, giving daemons access to /etc/sasldb2 is what the "sasl" group is _for_, after all.
An alternative might be to force use of saslauthd, provide an configuration upgrade path, test thoroughly,and document that direct access to sasldb2 is no longer supported,
I'd really recommend the former, though. :) |
|
|
2008-08-29 19:00:07 |
Mathias Gug |
openldap: status |
New |
Invalid |
|
2008-08-29 19:00:07 |
Mathias Gug |
openldap: statusexplanation |
|
|
|
2008-09-02 21:52:54 |
Mathias Gug |
openldap: status |
New |
Triaged |
|
2008-09-02 21:52:54 |
Mathias Gug |
openldap: statusexplanation |
|
|
|
2008-09-02 21:53:06 |
Mathias Gug |
openldap2.3: status |
New |
Triaged |
|
2008-09-02 21:53:06 |
Mathias Gug |
openldap2.3: importance |
Undecided |
Low |
|
2008-09-02 21:53:06 |
Mathias Gug |
openldap2.3: statusexplanation |
|
|
|
2008-09-02 21:53:32 |
Mathias Gug |
openldap: status |
Triaged |
Confirmed |
|
2008-09-02 23:00:12 |
Mathias Gug |
openldap: status |
Confirmed |
Triaged |
|
2008-09-02 23:00:12 |
Mathias Gug |
openldap: importance |
Undecided |
Low |
|
2009-03-10 19:06:02 |
Mathias Gug |
title |
upgrade to hardy: user openldap is not added to group sasl |
dapper upgrade to hardy: user openldap is not added to group sasl |
|
2009-03-10 19:26:26 |
Mathias Gug |
openldap: status |
Triaged |
Won't Fix |
|
2009-03-10 19:26:26 |
Mathias Gug |
openldap: statusexplanation |
|
Marking won't fix in the development release. This is an issue related to upgrades from dapper to hardy.
Adding the openldap to the sasl group by default is not an option.
|
|
2011-03-23 05:11:17 |
Clint Byrum |
tags |
|
dapper2hardy |
|
2014-11-23 15:09:43 |
Rolf Leggewie |
openldap2.3 (Ubuntu Hardy): status |
Triaged |
Won't Fix |
|