On Thu, Jul 19, 2012 at 23:43:56 +0000, Laszlo Boszormenyi (GCS) wrote: > Package: release.debian.org > Severity: normal > User: release.debian.org@packages.debian.org > Usertags: freeze-exception > thanks > > Hi, > > Please unblock couchdb/1.2.0-2 which fixes #681549 [1]. > On new installs /var/run/couchdb is created to store the pidfile in, but > as root:root . Then the couchdb user can't store its pid there, due to > owner problems. Filed as important, but can be RC as couchdb fails to > start if can't store the pidfile. > The fix is oneliner: > +++ couchdb-1.2.0/etc/init/couchdb.tpl.in > mkdir -p "$RUN_DIR" > + chown -R "$COUCHDB_USER" "$RUN_DIR" > command="$COUCHDB -b" > Can't the pidfile be written to before dropping privs? chown -R feels rather ick, I can't see why the -R should be necessary and I can see a few ways it could be bad. Cheers, Julien
Attachment:
signature.asc
Description: Digital signature