> Mike Smith wrote:
> > On Mon, Jul 19, 1999 at 06:13:51PM +0200, Dag-Erling Smorgrav wrote:
> > > Oscar Bonilla <[EMAIL PROTECTED]> writes:
> > > > the idea is to have an entry in the /etc/passwd enabling LDAP lookups.
> > > > the Entry would be of the form
> > > >
> > > > ldap:*:389:389:o=My Organization, c=BR:uid:ldap.myorg.com
> > >
> > > Horrible idea.
> > >
> >
> > suggestions?
>
> Use PAM.
PAM isn't going to cut it. This is outside of its realm. Things like ps,
top, ls, chown, chmod, lpr, rcmd, who, w, (the list goes on) need to be able
to pull 'passwd' entries from the LDAP server, and unless we PAM all of those
(I think that is a very bad idea), then a person will be able to login but
will be dead in the water without a UID <->Username mapping.
--
David Cross | email: [EMAIL PROTECTED]
Systems Administrator/Research Programmer | Web: http://www.cs.rpi.edu/~crossd
Rensselaer Polytechnic Institute, | Ph: 518.276.2860
Department of Computer Science | Fax: 518.276.4033
I speak only for myself. | WinNT:Linux::Linux:FreeBSD
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-hackers" in the body of the message
