--On Tuesday, October 19, 2021 9:55 PM -0700 "Paul B. Henson" henson@acm.org wrote:
On 10/19/2021 8:10 AM, Quanah Gibson-Mount wrote:
If you want it to run as a non-root user, it's on you to configure it as such, including said user. The majority of Symas customers run as root. So yes, this is intentional and due to the fact that it's not attempting to be the replacement of the system bundled OpenLDAP. You're free to run things as best fits your environment.
Oh, ok; it was just an unexpected difference from the previous version that surprised me. Easy enough to resolve, although it seems inadvisable for the majority of your customers to run the service as root 8-/. How many do that intentionally, and how many do that because they just don't know any better and it's the default :)?
We advise them of best practices, but how they want to deploy is their decision.
--Quanah
--
Quanah Gibson-Mount Product Architect Symas Corporation Packaged, certified, and supported LDAP solutions powered by OpenLDAP: http://www.symas.com