Skip to content

Commit

Permalink
SYSTEMD: don't chown() logs
Browse files Browse the repository at this point in the history 
Reconfiguration of SSSD service user should be exceptionally rare event,
so it's reasonable to expect that administrator should also wipe artifacts
(logs, ldb-cache) manually in this, and keeping chown()-s in service file
isn't justified.
  • Loading branch information
@alexey-tikhonov
alexey-tikhonov committed May 10, 2024
1 parent e45809f commit 87c8d73
Show file tree
Hide file tree
Showing 7 changed files with 0 additions and 7 deletions.
1 change: 0 additions & 1 deletion src/sysv/systemd/sssd-autofs.service.in
View file
Original file line number Diff line number Diff line change
Expand Up @@ -11,7 +11,6 @@ Also=sssd-autofs.socket
[Service]
Environment=DEBUG_LOGGER=--logger=files
EnvironmentFile=-@environment_file@
ExecStartPre=+-/bin/chown @SSSD_USER@:@SSSD_USER@ @logpath@/sssd_autofs.log
ExecStart=@libexecdir@/sssd/sssd_autofs ${DEBUG_LOGGER} --socket-activated
# No capabilities:
CapabilityBoundingSet=
Expand Down
1 change: 0 additions & 1 deletion src/sysv/systemd/sssd-ifp.service.in
View file
Original file line number Diff line number Diff line change
Expand Up @@ -9,7 +9,6 @@ Environment=DEBUG_LOGGER=--logger=files
EnvironmentFile=-@environment_file@
Type=dbus
BusName=org.freedesktop.sssd.infopipe
ExecStartPre=+-/bin/chown @SSSD_USER@:@SSSD_USER@ @logpath@/sssd_ifp.log
ExecStart=@libexecdir@/sssd/sssd_ifp ${DEBUG_LOGGER} --socket-activated
# No capabilities:
CapabilityBoundingSet=
Expand Down
1 change: 0 additions & 1 deletion src/sysv/systemd/sssd-nss.service.in
View file
Original file line number Diff line number Diff line change
Expand Up @@ -11,7 +11,6 @@ Also=sssd-nss.socket
[Service]
Environment=DEBUG_LOGGER=--logger=files
EnvironmentFile=-@environment_file@
ExecStartPre=+-/bin/chown @SSSD_USER@:@SSSD_USER@ @logpath@/sssd_nss.log
ExecStart=@libexecdir@/sssd/sssd_nss ${DEBUG_LOGGER} --socket-activated
# No capabilities:
CapabilityBoundingSet=
Expand Down
1 change: 0 additions & 1 deletion src/sysv/systemd/sssd-pac.service.in
View file
Original file line number Diff line number Diff line change
Expand Up @@ -11,7 +11,6 @@ Also=sssd-pac.socket
[Service]
Environment=DEBUG_LOGGER=--logger=files
EnvironmentFile=-@environment_file@
ExecStartPre=+-/bin/chown @SSSD_USER@:@SSSD_USER@ @logpath@/sssd_pac.log
ExecStart=@libexecdir@/sssd/sssd_pac ${DEBUG_LOGGER} --socket-activated
# No capabilities:
CapabilityBoundingSet=
Expand Down
1 change: 0 additions & 1 deletion src/sysv/systemd/sssd-pam.service.in
View file
Original file line number Diff line number Diff line change
Expand Up @@ -11,7 +11,6 @@ Also=sssd-pam.socket
[Service]
Environment=DEBUG_LOGGER=--logger=files
EnvironmentFile=-@environment_file@
ExecStartPre=+-/bin/chown @SSSD_USER@:@SSSD_USER@ @logpath@/sssd_pam.log @logpath@/p11_child.log
ExecStart=@libexecdir@/sssd/sssd_pam ${DEBUG_LOGGER} --socket-activated
# No capabilities:
CapabilityBoundingSet=
Expand Down
1 change: 0 additions & 1 deletion src/sysv/systemd/sssd-ssh.service.in
View file
Original file line number Diff line number Diff line change
Expand Up @@ -11,7 +11,6 @@ Also=sssd-ssh.socket
[Service]
Environment=DEBUG_LOGGER=--logger=files
EnvironmentFile=-@environment_file@
ExecStartPre=+-/bin/chown @SSSD_USER@:@SSSD_USER@ @logpath@/sssd_ssh.log @logpath@/p11_child.log
ExecStart=@libexecdir@/sssd/sssd_ssh ${DEBUG_LOGGER} --socket-activated
# No capabilities:
CapabilityBoundingSet=
Expand Down
1 change: 0 additions & 1 deletion src/sysv/systemd/sssd-sudo.service.in
View file
Original file line number Diff line number Diff line change
Expand Up @@ -11,7 +11,6 @@ Also=sssd-sudo.socket
[Service]
Environment=DEBUG_LOGGER=--logger=files
EnvironmentFile=-@environment_file@
ExecStartPre=+-/bin/chown @SSSD_USER@:@SSSD_USER@ @logpath@/sssd_sudo.log
ExecStart=@libexecdir@/sssd/sssd_sudo ${DEBUG_LOGGER} --socket-activated
# No capabilities:
CapabilityBoundingSet=
Expand Down

0 comments on commit 87c8d73

Please sign in to comment.