[ovs-dev] [Debian-non-root v2 4/4] Debian: start daemons as ovs(non-root) user

Ben Pfaff blp at nicira.com
Mon Oct 26 04:40:19 UTC 2015


On Sun, Oct 25, 2015 at 09:36:03PM -0700, Andy Zhou wrote:
> On Sat, Oct 24, 2015 at 2:36 PM, Ben Pfaff <blp at nicira.com> wrote:
> > openvswitch-vtep.init seems like a funny place to do the following:
> >
> >> +    chown -R $OVS_USER:$OVS_GROUP /etc/openvswitch
> >> +    chown -R $OVS_USER:$OVS_GROUP /var/run/openvswitch
> >> +    chmod -R 0770 /var/run/openvswitch
> >
> 
> I agree it is odd. But seems necessary given the directory and files
> created above as root. Do you have
> some alternatives in mind?

My point is that, if these files and directories need specific
permissions, then openvswitch-vtep is probably not the right place to do
it because most users won't install that package: it is only for
hardware VTEPs.  (Do you do this somewhere else too?  I only spotted it
in openvswitch-vtep.)



More information about the dev mailing list