Package: finger-ldap Version: 1.1-2 Severity: important
By default nss_base_password in /etc/libnss-ldap is not set. This causes error during finger-ldap execution:
finger userUse of uninitialized value in concatenation (.) or string at orig/finger-ldap line 99, <DATA> line 283.
Login: user Name: full name
Directory: /home/user Shell: /bin/sh
Last login Thu Feb 3 21:33 (CET) on pts/0 from some.machine.net
No mail.
No Plan.
Even if nss_base_passwd is set, in most cases its useless and is used incorectly by finger-ldap.
According to comments in /etc/libnss-ldap nss_base_xxx can be set to
-full path like ou=People,dc=padl,dc=com?...
-prefix to base path like ou=People, (base dn will be appended)
-prefix without comma like ou=People
only last variant will work with finger-ldap as expected, in other cases
incorrect information can be displayed - exact match for uid is never
successful.
Other issue is nss_map_attribute stanzas in /etc/libnss-ldap. For using proprietary LDAP servers it's may be necesery to map uid, cn and other atributes to somthing else (e.g. for novell e-Directory uid ->cn, cn->fullname)
Here is simple patch to solve this problem.
Matej ZaGiBa
finger-ldap.diff.gz
Description: GNU Zip compressed data
