Symas OpenLDAP 2.5 RPMs run slapd as root?

19 Oct 2021


      I'm testing openldap 2.5 in preparation for migration my production
services, and I noticed that the 2.5 RPMs no longer create an ldap user
and instead run slapd as root by default? Is this because they're no
longer intended to replace the system bundled openldap packages? It
seems undesirable from a security perspective to run slapd as root
rather than a dedicated service account.
I see there's a note about updating the startup options to run as a
service account here:
https://repo.symas.com/soldap/systemd/
but the ldap user/group used as an example won't exist unless the system
RPMs or the 2.4 RPMs have been previously installed or the user is
created manually.

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

Symas OpenLDAP 2.5 RPMs run slapd as root?