Skip to content

Setup logging directory with unprivileged user access

Currently we log to wherever the admin specifically tells the daemon to log, traces are dumped in $PWD. Should be something like /var/log/ocspd/ocspd.log I think, and /var/log/ocspd/ocspd_exceptionYYYYMMDD-HH:MM:SS.trace but that requires some setup work from root. So we can choose:

  1. We start this as a root process that checks the existence of this path and creates it if it doesn't exist, sets rights for an unprivileged user, then drop to that unprivileged user. (always works)
  2. We do this during post install once.. (ok for debian package?)
  3. We document this requirement in the docs.. (ok for pip/gitlab/github installs?).