Source: krb5 Severity: normal Dear Maintainer,
Setting up kerberos by following http://techpubs.spinlocksolutions.com/dklar/kerberos.html When invoking 'invoke-rc.d krb5-admin-server restart' or 'invoke-rc.d krb5-kdc restart', syslog prints "Couldn't open log file /var/log/kerberos/(kadmin|krb5kdc).log: Read-only file system" To fix the problem, i created /etc/systemd/system/krb5-admin-server.service.d/logging.conf and /etc/systemd/system/krb5-kdc.service.d/logging.conf with the following content: [Service] ReadWriteDirectories=/var/log/kerberos Shouldn't this be enabled by default in /lib/systemd/system/krb5-(admin-server|kdc).service? And consequently, shouldn't the following be the default in /etc/krb5.conf? [logging] kdc = FILE:/var/log/kerberos/krb5kdc.log admin_server = FILE:/var/log/kerberos/kadmin.log default = FILE:/var/log/kerberos/krb5lib.log -- System Information: Debian Release: 9.8 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'stable') Architecture: amd64 (x86_64) Kernel: Linux 4.9.0-8-amd64 (SMP w/1 CPU core) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system)
