I don't think the earlier lock-wrapper change will work, since the
ftpsync user does not have write access to /var/lock. This patch adds
the ftpsync user to the lock group, which should allow it to use
lock-wrapper.
Alternatively, we can run lock-wrapper as root and use sudo to run the
command as ftpsync.
---
manifests/services/mirrormaster.pp | 11 ++++++-----
1 files changed, 6 insertions(+), 5 deletions(-)
diff --git a/manifests/services/mirrormaster.pp b/manifests/services/mirrormaster.pp
index 001aec2..89af308 100644
--- a/manifests/services/mirrormaster.pp
+++ b/manifests/services/mirrormaster.pp
@@ -9,12 +9,13 @@ class mirrormaster {
user { ftpsync:
require => Group['ftpsync'],
- uid => 263,
- gid => 263,
- shell => '/bin/bash',
- home => '/tmp',
+ uid => 263,
+ gid => 263,
+ groups => [ "lock" ],
+ shell => '/bin/bash',
+ home => '/tmp',
comment => 'ftpsync account',
- ensure => present,
+ ensure => present,
}
script { "/usr/local/bin/update-fullfilelist":
--
1.5.5.6
Attachment:
pgpVx0nVDHxPR.pgp
Description: PGP signature
_______________________________________________ infrastructure mailing list infrastructure@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/infrastructure
