Bug#455264: openais: add ais user
> You are the first person requesting this.
well, i'm the second one then ;-)
Regarding the use of it:
i am using a fully OpenAIS based version of clvm (to avoid having to deal
with cman and fencing etc) following these instructions
http://h2o.glou.fr/post/2009/04/20/clvm-openais-on-Debian/Lenny
http://www.pixelchaos.net/2009/04/23/openais-an-alternative-to-clvm-with-
cman/
The open ais user is still not used as described there (aisexec runs as
root), but as far as i understand required for starting anyway (didn't
check that yet).
Anyways, running daemos as non-priviledged users is always a good security
policy, and coupling that ais user with "secauth: on" should be the final
target.
Having in the package the init.d script for aisexec (the one provided in
the URL above is quite nice) --but not started by default, say
/etc/defaults/openais--- would also be nice!
Thanks for your packaging work,
Ariel
Reply to: