On Thu, 2012-12-20 at 22:24 +0100, Arno wrote: > Which was caused by the removal of the line > > tls_cacertfile /etc/ssl/certs/loos.site.pem > > from nslcd.conf on upgrade.
This is really weird, nslcd package scripts shouldn't do anything with this option (neither this version or any before). Do you by any change have the configuration file before and after the upgrade? Also, can you confirm that this debconf information was in place after the upgrade for the broken machine: * nslcd/ldap-auth-type: none * nslcd/ldap-base: dc=loos,dc=site nslcd/ldap-binddn: * nslcd/ldap-reqcert: try nslcd/ldap-sasl-authcid: nslcd/ldap-sasl-authzid: nslcd/ldap-sasl-krb5-ccname: /var/run/nslcd/nslcd.tkt nslcd/ldap-sasl-mech: nslcd/ldap-sasl-realm: nslcd/ldap-sasl-secprops: * nslcd/ldap-starttls: true * nslcd/ldap-uris: ldap://gnome.loos.site ldap://genie.loos.site Do you recall if any debconf prompts were shown during the upgrade? Thanks, -- -- arthur - adej...@debian.org - http://people.debian.org/~adejong --
signature.asc
Description: This is a digitally signed message part