Subject: Re: pkg/34183: openldap-server dies silently on startup after fresh install
To: None <ghen@NetBSD.org, gnats-admin@netbsd.org, pkgsrc-bugs@netbsd.org,>
From: Geert Hendrickx <ghen@NetBSD.org>
List: pkgsrc-bugs
Date: 08/11/2006 05:45:01
The following reply was made to PR pkg/34183; it has been noted by GNATS.

From: Geert Hendrickx <ghen@NetBSD.org>
To: gnats-bugs@NetBSD.org
Cc: 
Subject: Re: pkg/34183: openldap-server dies silently on startup after fresh install
Date: Fri, 11 Aug 2006 07:44:47 +0200

 On Thu, Aug 10, 2006 at 10:35:00PM +0000, bad@bsd.de wrote:
 > >Description:
 > After installing the openldap-server package for the first time on a system
 > fails to start without any error messages.
 
 slapd is completely silent by default (like most daemons).  For verbose
 output on stderr, try starting it manually with -d debuglevel.  You can use
 -d -1 to set all the bits, for very verbose output, or -d 0 for just
 critical error output.  Try to start like: "/usr/pkg/libexec/slapd -u slapd
 -d -1".  If you suspect permission problems, try to start as root first
 (leave out the "-u slapd").  
 
 For details about the different debuglevels, see
 http://www.openldap.org/doc/admin23/slapdconfig.html#loglevel%20%3Cinteger%3E
 
 > There are multiple bugs:
 > 
 > - slapd fails to start because the permissions on $PKG_SYSCONFDIR/openldap and
 > below don't allow slapd to access the files because they aren't group readable.
 
 This dir should be world-readable (755) by default.  Only slapd.conf itself
 should be confidential (750 root:ldap).  
 
 > - slapd does syslog these errors but it logs them at "local4.debug" instead of
 > severity "error" or higher.
 
 That's default slapd behaviour.  If you consider it a bug, take it to the
 OpenLDAP developers.  
 
 > - also, slapd logs syntax errors in the config files that prevent it from
 > starting with severity "debug" instead of "error" or higher.
 
 That's default slapd behaviour.  
 
 > - the file permissions on /var/openldap/openldap-data are wrong, too.
 
 This dir should be created as 700 slapd:ldap.  
 
 > >How-To-Repeat:
 > 	rm -rf $PKG_SYSCONFDIR/openldap /var/openldap
 > 	cd pkgsrc/databases/openldap-server && make install
 > 
 > 	start slapd by way of the rc.d script
 > >Fix:
 > 	I haven't looked at fixing this.
 
 	Geert