documentation-packages team mailing list archive

Thread
Date

[Bug 1170876] Re: LDAP Private Key Access

To: documentation-packages@xxxxxxxxxxxxxxxxxxx
From: Gunnar Hjalmarsson <1170876@xxxxxxxxxxxxxxxxxx>
Date: Sun, 26 Oct 2014 20:02:17 -0000
Reply-to: Bug 1170876 <1170876@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

** No longer affects: ubuntu-docs (Ubuntu)

-- 
You received this bug notification because you are a member of
Documentation Packages, which is subscribed to ubuntu-docs in Ubuntu.
https://bugs.launchpad.net/bugs/1170876

Title:
  LDAP Private Key Access

Status in Ubuntu Server Guide:
  New

Bug description:
  Network Authentication >> OpenLDAP Server says in a couple of places:
  sudo chgrp ssl-cert /etc/ssl/private/ldap01_slapd_key.pem
  However, what's missing here is that the 'private' directory should also belong to 'ssl-cert'.
  sudo chgrp ssl-cert /etc/ssl/private
  sudo chmod g+r /etc/ssl/private
  Otherwise, secure ldpa will not work because 
  drwx--x--- 2 root root private
  and ss-cert cannot access this directory even if ldap private key is owned by ssl-cert group.

To manage notifications about this bug go to:
https://bugs.launchpad.net/serverguide/+bug/1170876/+subscriptions