rpm/salt
SHA256
1
0
Fork 0
forked from pool/salt
Code Pull Requests Activity
51 Commits 2 Branches 0 Tags 42 MiB
Shell 91.3%
Makefile 8.7%
084075d360
Go to file
Dominique Leuenberger 084075d360 Accepting request 349516 from devel:languages:python 
1

OBS-URL: https://build.opensuse.org/request/show/349516
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/salt?expand=0&rev=53
2015-12-23 07:49:47 +00:00
.gitattributes Accepting request 175205 from devel:languages:python 2013-05-16 09:38:22 +00:00
.gitignore Accepting request 175205 from devel:languages:python 2013-05-16 09:38:22 +00:00
1efe484309a5c776974e723f3da0f5181f4bdb86.patch Accepting request 349516 from devel:languages:python 2015-12-23 07:49:47 +00:00
0001-Add-rpm.minimal_info-fix-rpm.info.patch Accepting request 349516 from devel:languages:python 2015-12-23 07:49:47 +00:00
0002-Reduce-information-returned-from-pkg.info_installed.patch Accepting request 349516 from devel:languages:python 2015-12-23 07:49:47 +00:00
README.SUSE Accepting request 339485 from devel:languages:python 2015-10-19 20:52:40 +00:00
salt-2015.8.3.tar.gz Accepting request 347822 from devel:languages:python 2015-12-09 18:53:52 +00:00
salt-tmpfiles.d Accepting request 339485 from devel:languages:python 2015-10-19 20:52:40 +00:00
salt.changes Accepting request 349516 from devel:languages:python 2015-12-23 07:49:47 +00:00
salt.spec Accepting request 349516 from devel:languages:python 2015-12-23 07:49:47 +00:00
use-forking-daemon.patch Accepting request 339485 from devel:languages:python 2015-10-19 20:52:40 +00:00
use-salt-user-for-master.patch Accepting request 347822 from devel:languages:python 2015-12-09 18:53:52 +00:00
zypper-utf-8.patch Accepting request 349516 from devel:languages:python 2015-12-23 07:49:47 +00:00

README.SUSE 

Salt-master as non-root user
============================

With this version of salt the salt-master will run as salt user.

Why an extra user
=================

While the current setup runs the master as root user, this is considered a security issue
and not in line with the other configuration management tools (eg. puppet) which runs as a
dedicated user. 

How can I undo the change
=========================

If you would like to make the change before you can do the following steps manually:
1. change the user parameter in the master configuration
   user: root
2. update the file permissions:
   as root: chown -R root /etc/salt /var/cache/salt /var/log/salt /var/run/salt
3. restart the salt-master daemon:
   as root: rcsalt-master restart or systemctl restart salt-master

NOTE
====

Running the salt-master daemon as a root user is considers by some a security risk, but
running as root, enables the pam external auth system, as this system needs root access to check authentication.

For more information:
http://docs.saltstack.com/en/latest/ref/configuration/nonroot.html