From 087989cbcbd0a54038b8992b73adbc38de4a6675 Mon Sep 17 00:00:00 2001 From: Gerardo Ganis Date: Fri, 11 Apr 2014 16:10:54 +0200 Subject: [PATCH] Fix problem with creation of the forwarded ticket Following commit f44d455d78109794a46714764cd57e79bc105969 the daemon is no longer able to set {uid,gid} on the created file with the forwarded ticket. This patch completes the previous one by removing the attempt to change {uid,gid}. The file will be pwn by the daemon owner with permissions 0600. --- src/XrdSeckrb5/XrdSecProtocolkrb5.cc | 2 -- 1 file changed, 2 deletions(-) diff --git a/src/XrdSeckrb5/XrdSecProtocolkrb5.cc b/src/XrdSeckrb5/XrdSecProtocolkrb5.cc index 6df7d467a6c..cface045b8b 100644 --- a/src/XrdSeckrb5/XrdSecProtocolkrb5.cc +++ b/src/XrdSeckrb5/XrdSecProtocolkrb5.cc @@ -830,8 +830,6 @@ int XrdSecProtocolkrb5::exp_krbTkn(XrdSecCredentials *cred, XrdOucErrInfo *erp) // Change permission and ownership of the file // - if (chown(ccfile, pw->pw_uid, pw->pw_gid) == -1) - return Fatal(erp, errno, "Unable to change file ownership;", ccfile, 0); if (chmod(ccfile, 0600) == -1) return Fatal(erp, errno, "Unable to change file permissions;", ccfile, 0);