Name | Date | Size | #Lines | LOC | ||
---|---|---|---|---|---|---|
.. | 01-Mar-2022 | - | ||||
README.suse | H A D | 01-Mar-2022 | 1.1 KiB | 33 | 23 | |
allow-systemd-parameterized-services.patch | H A D | 01-Mar-2022 | 2.2 KiB | 75 | 58 | |
allow-systemd-units-no-unit-files.patch | H A D | 01-Mar-2022 | 2.3 KiB | 80 | 66 | |
disable-service-py-for-suse-family.patch | H A D | 01-Mar-2022 | 929 | 27 | 23 | |
fix-service-py-version-parsing-sles.patch | H A D | 01-Mar-2022 | 1.4 KiB | 32 | 28 | |
pass-all-systemd-list-units.patch | H A D | 01-Mar-2022 | 937 | 29 | 23 | |
salt-api | H A D | 01-Mar-2022 | 3.6 KiB | 155 | 114 | |
salt-api.changes | H A D | 01-Mar-2022 | 3.4 KiB | 96 | 69 | |
salt-api.service | H A D | 01-Mar-2022 | 342 | 16 | 13 | |
salt-api.spec | H A D | 01-Mar-2022 | 2.9 KiB | 119 | 83 | |
salt-common.logrotate | H A D | 01-Mar-2022 | 545 | 54 | 48 | |
salt-master | H A D | 01-Mar-2022 | 3.2 KiB | 138 | 97 | |
salt-master.service | H A D | 01-Mar-2022 | 323 | 14 | 11 | |
salt-minion | H A D | 01-Mar-2022 | 4 KiB | 164 | 119 | |
salt-minion.service | H A D | 01-Mar-2022 | 252 | 16 | 13 | |
salt-minion.service.rhel7 | H A D | 01-Mar-2022 | 215 | 15 | 12 | |
salt-syndic | H A D | 01-Mar-2022 | 3.3 KiB | 139 | 97 | |
salt-tmpfiles.d | H A D | 01-Mar-2022 | 201 | 6 | 4 | |
salt.SuSEfirewall2 | H A D | 01-Mar-2022 | 121 | 6 | 4 | |
salt.changes | H A D | 01-Mar-2022 | 56.9 KiB | 1,345 | 1,127 | |
salt.spec | H A D | 01-Mar-2022 | 24.3 KiB | 822 | 691 | |
use-forking-daemon.patch | H A D | 01-Mar-2022 | 379 | 14 | 12 | |
use-salt-user-for-master.patch | H A D | 01-Mar-2022 | 921 | 40 | 36 |
README.suse
1Salt-master as non-root user 2============================ 3 4With this version of salt the salt-master will run as salt user. 5 6Why an extra user 7================= 8 9While the current setup runs the master as root user, this is considered a security issue 10and not in line with the other configuration management tools (eg. puppet) which runs as a 11dedicated user. 12 13How can I undo the change 14========================= 15 16If you would like to make the change before you can do the following steps manually: 171. change the user parameter in the master configuration 18 user: root 192. update the file permissions: 20 as root: chown -R root /etc/salt /var/cache/salt /var/log/salt /var/run/salt 213. restart the salt-master daemon: 22 as root: rcsalt-master restart or systemctl restart salt-master 23 24NOTE 25==== 26 27Running the salt-master daemon as a root user is considers by some a security risk, but 28running as root, enables the pam external auth system, as this system needs root access to check authentication. 29 30For more information: 31https://docs.saltproject.io/en/latest/ref/configuration/nonroot.html 32 33