Archive for January 13th, 2007
Nasty LDAP problem – fixed
Well today I backported libnss-ldap 251-7.1 from etch to sarge and then added this to /etc/libnss-ldap.conf # must exclude openldap from slapd to avoid TLS/SSL issues (debian bug #381788) # exclude root too nss_initgroups_ignoreusers root,openldap Since later versions change the defaults, I’m also going to hardcode the timeouts now: # Search timelimit timelimit 10 # [...]
Posted: January 13th, 2007 under Linux.
Comments: none
Nasty LDAP problem
Well I’ve just had nastiest problem for a long time. Obviously it also comes at a time when I don’t really want an interesting problem to look at. I’d been rolling out a basebuild to various servers which includes LDAP integration (for ssh, sudo, libc6). All was going swimmingly. Then I upgraded the LDAP server [...]
Posted: January 13th, 2007 under Linux.
Comments: none