Your message dated Sat, 23 Jan 2010 11:55:22 +0100
with message-id <20100123105522.ga14...@bogon.sigxcpu.org>
and subject line Log file is a Berkely DB Database Logfile
has caused the Debian Bug report #562059,
regarding heimdal-kdc: creates logfiles in /var/lib/heimdal-kdc
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
562059: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=562059
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: heimdal-kdc
Version: 1.2.dfsg.1-2.1
Severity: serious
Hi,
on a fresh installation a logfile was created in /var/lib/heimdal-kdc.
That seems to be a FHS violation as the path is reserved for
state information, whereas the FHS explicitly states:
"State information should generally remain valid after a reboot, should
not be *logging output*, and should not be spooled data."
JFTR: Its not a configuration problem:
krb-test:/etc/bind# grep -i log /etc/heimdal-kdc/kdc.conf
# See allowed values in krb5_openlog(3) man page.
log_file = FILE:/var/log/heimdal-kdc.log
Best Regards,
Patrick
-- System Information:
Debian Release: squeeze/sid
APT prefers unstable
APT policy: (500, 'unstable'), (500, 'testing')
Architecture: i386 (x86_64)
Kernel: Linux 2.6.31-1-amd64 (SMP w/2 CPU cores)
Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Versions of packages heimdal-kdc depends on:
ii cdebconf [debconf-2.0] 0.145 Debian Configuration Management Sy
ii debconf [debconf-2.0] 1.5.28 Debian configuration management sy
pn heimdal-clients <none> (no description available)
ii krb5-config 2.2 Configuration files for Kerberos V
ii libasn1-8-heimdal 1.3.1.dfsg.1-6 Heimdal Kerberos - ASN.1 library
ii libc6 2.10.2-2 GNU C Library: Shared libraries
ii libcomerr2 1.41.9-1 common error description library
ii libdb4.8 4.8.24-2 Berkeley v4.8 Database Libraries [
ii libgssapi2-heimdal 1.3.1.dfsg.1-6 Heimdal Kerberos - GSSAPI support
ii libhdb9-heimdal 1.3.1.dfsg.1-6 Heimdal Kerberos - kadmin server l
ii libheimntlm0-heimdal 1.3.1.dfsg.1-6 Heimdal Kerberos - NTLM support li
ii libhx509-5-heimdal 1.3.1.dfsg.1-6 Heimdal Kerberos - X509 support li
ii libkadm5srv8-heimdal 1.3.1.dfsg.1-6 Libraries for Heimdal Kerberos
pn libkdc2-heimdal <none> (no description available)
pn libkrb5-25-heimdal <none> (no description available)
ii libldap-2.4-2 2.4.17-2.1 OpenLDAP libraries
ii libroken18-heimdal 1.3.1.dfsg.1-6 Heimdal Kerberos - roken support l
ii libsqlite3-0 3.6.21-2 SQLite 3 shared library
ii libssl0.9.8 0.9.8k-7 SSL shared libraries
ii libwind0-heimdal 1.3.1.dfsg.1-6 Heimdal Kerberos - NTLM support li
ii logrotate 3.7.8-4 Log rotation utility
ii openbsd-inetd [inet-super 0.20080125-4 The OpenBSD Internet Superserver
heimdal-kdc recommends no packages.
Versions of packages heimdal-kdc suggests:
pn heimdal-docs <none> (no description available)
--- End Message ---
--- Begin Message ---
Hi Patrick,
/var/lib/heimdal-kdc/log is a database log used by the KDC (for e.g.
iprop replication) so it actually is state information. It's not
"logging information" as e.g. /var/log/syslog.
I can't see any other logs there:
# ls -l /var/lib/heimdal-kdc/
total 24
-rw------- 1 root root 8192 2010-01-23 11:39 heimdal.db
lrwxrwxrwx 1 root root 25 2010-01-23 11:29 kdc.conf ->
/etc/heimdal-kdc/kdc.conf
-rw------- 1 root root 8757 2010-01-23 11:39 log
-rw------- 1 root root 70 2010-01-23 11:29 m-key
If you want to change the path of the database logs you have to set the
log_file variable in a database section like:
database = {
...
log_file = /var/lib/heimdal-kdc/log.db
}
Cheers,
-- Guido
--- End Message ---
