https://bugzilla.novell.com/show_bug.cgi?id=662963 https://bugzilla.novell.com/show_bug.cgi?id=662963#c3 Jiří Suchomel <jsuchome@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |RESOLVED Resolution| |FIXED --- Comment #3 from Jiří Suchomel <jsuchome@novell.com> 2011-01-07 12:42:42 UTC --- (In reply to comment #2)
(In reply to comment #1)
In latest package, I do not write the file when it is not present. Is it good enough? Yes, I guess so. Though the main reasons why it was working were:
- sssd.conf needs to be 0600 (it might contain cleartext secrets, or cleartext equivalents). SSSD checks that upon startup and refuses to start if the file is not 0600. YaST created that file as 0644.
- the [sssd] section missed the line: config_file_version = 2
yast2-ldap-client should probably check the above conditions, always when writing sssd.conf.
I don't think check for permission is needed, when I ensure that YaST writes only into existing file. If the file exists, it was created by sssd package with correct permissions. If they were still wrong, user must have changed them manually, which is bad, but YaST should not argue about it. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.