Bug#179154: marked as done (nscd will help with lookup of passwd info, ignores group lookups?)

Wed, 02 Jul 2008 22:03:11 -0700 

Your message dated Thu, 3 Jul 2008 04:59:05 +0000 (UTC)
with message-id <[EMAIL PROTECTED]>
and subject line nscd will help with lookup of passwd info, ignores group 
lookups?
has caused the Debian Bug report #179154,
regarding nscd will help with lookup of passwd info, ignores group lookups?
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [EMAIL PROTECTED]
immediately.)


-- 
179154: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=179154
Debian Bug Tracking System
Contact [EMAIL PROTECTED] with problems
--- Begin Message --- 
Package: nscd
Version: 2.2.5-11.2
Severity: normal

I'd like to be able to make my /etc/libnss-ldap.conf (I'm using LDAP
auth) mode 0600, so I can keep a bind DN and password in the config
file, and then just let nscd proxy the lookups of things for the
systems. However, it doesn't seem to do anything about getgrnam() and
getgrent() style lookups, only getgruid() lookups, so secondary groups
get ignored completely. Is nscd just plain broken?

-- System Information
Debian Release: 3.0
Architecture: i386
Kernel: Linux andromeda 2.4.20 #1 SMP Sun Jan 12 09:32:47 MST 2003 i686
Locale: LANG=C, LC_CTYPE=C

Versions of packages nscd depends on:
ii  libc6                         2.2.5-11.2 GNU C Library: Shared libraries an

--- End Message ---
--- Begin Message --- 
I'd like to be able to make my /etc/libnss-ldap.conf (I'm using LDAP
auth) mode 0600, so I can keep a bind DN and password in the config
file, and then just let nscd proxy the lookups of things for the
systems. However, it doesn't seem to do anything about getgrnam() and
getgrent() style lookups, only getgruid() lookups, so secondary groups
get ignored completely. Is nscd just plain broken?


No, you're just missing the fact that libnss-ldap.conf has two
binddn/pwd options - one for non-root and one for root (where the
password is stored in an auxilliary file which should be 0600).

The base file, however, needs to be go+r
--
Rick Nelson
The memory management on the PowerPC can be used to frighten small children.
                -- Linus Torvalds

--- End Message ---

Reply via email to