On Fri, 2008-05-16 at 15:40 +0200, Bas van der Vlies wrote: > > I had thought that this was a good enough upper limit but apparently > > there are environments out there with many more users per group. > > What would be a reasonable upper limit? > > can this be configurable in nss-ldapd.conf. I assume if you increase > more memory is used and it is only needed in environments where there > are many group members
This can't be made configurable easily because this is about memory allocated in the NSS module. The NSS module doesn't parse the config file and doesn't hold any state (apart from the connection to nslcd for multi-call requests like {set,get,end}pwent()). The path to the socket, timing settings and buffer sizes are all compiled-in. The good part is that the module will only grow the memory as needed so it will only allocate a lot of memory if it's actually used (it doubles the allocated buffer on every filled up buffer). The limit is in place to work around LDAP directories with too many entries, a misbehaving nslcd, a problem in the communication or some other problem (it's more of a sanity check). -- -- arthur - [EMAIL PROTECTED] - http://people.debian.org/~adejong --
signature.asc
Description: This is a digitally signed message part