Skip to content

Commit

Permalink
SYSTEMD: don't use 'chown -R' for non-folders
Browse files Browse the repository at this point in the history
  • Loading branch information
alexey-tikhonov committed Sep 14, 2024
1 parent 068dbdf commit b7b4050
Show file tree
Hide file tree
Showing 2 changed files with 4 additions and 4 deletions.
4 changes: 2 additions & 2 deletions src/sysv/systemd/sssd-kcm.service.in
Original file line number Diff line number Diff line change
Expand Up @@ -12,8 +12,8 @@ Environment=DEBUG_LOGGER=--logger=files
ExecStartPre=+-/bin/chown -f root:root @sssdconfdir@
ExecStartPre=+-/bin/chown -f root:root @sssdconfdir@/sssd.conf
ExecStartPre=+-/bin/chown -f -R root:root @sssdconfdir@/conf.d
ExecStartPre=+-/bin/chown -f -R root:root @secdbpath@/*.ldb
ExecStartPre=+-/bin/chown -f -R root:root @logpath@/sssd_kcm.log
ExecStartPre=+-/bin/chown -f root:root @secdbpath@/*.ldb
ExecStartPre=+-/bin/chown -f root:root @logpath@/sssd_kcm.log
ExecStart=@libexecdir@/sssd/sssd_kcm ${DEBUG_LOGGER}
CapabilityBoundingSet= CAP_DAC_OVERRIDE CAP_CHOWN CAP_SETGID CAP_SETUID
SecureBits=noroot noroot-locked
Expand Down
4 changes: 2 additions & 2 deletions src/sysv/systemd/sssd.service.in
Original file line number Diff line number Diff line change
Expand Up @@ -14,8 +14,8 @@ ExecStartPre=+-/bin/chown -f root:root @sssdconfdir@
ExecStartPre=+-/bin/chown -f root:root @sssdconfdir@/sssd.conf
ExecStartPre=+-/bin/chown -f -R root:root @sssdconfdir@/conf.d
ExecStartPre=+-/bin/chown -f -R root:root @sssdconfdir@/pki
ExecStartPre=+-/bin/chown -f -R root:root @dbpath@/*.ldb
ExecStartPre=+-/bin/chown -f -R root:root @logpath@/*.log
ExecStartPre=+-/bin/chown -f root:root @dbpath@/*.ldb
ExecStartPre=+-/bin/chown -f root:root @logpath@/*.log
ExecStart=@sbindir@/sssd -i ${DEBUG_LOGGER}
Type=notify
NotifyAccess=main
Expand Down

0 comments on commit b7b4050

Please sign in to comment.