[Freeipa-devel] [PATCH] set perms on mod_nss database
Rob Crittenden
rcritten at redhat.com
Tue Apr 29 14:39:19 UTC 2008
The version of NSS in Fedora 9 required changes to mod_nss to do the
NSS_Initialize() in the children. This means that the apache user needs
to be able to read the database.
The solution was to set the database mode to 640 root:apache.
IPA creates its own database and sets the mode to 600 root:root
The installer needs to accommodate this change.
The F9 package has this fix as a patch in the spec file. We need to
commit this to the tree as well.
rob
-------------- next part --------------
A non-text attachment was scrubbed...
Name: freeipa-8-nssperms.patch
Type: text/x-patch
Size: 1538 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20080429/55ed8721/attachment.bin>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 3245 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20080429/55ed8721/attachment-0001.bin>
More information about the Freeipa-devel
mailing list