> On Thu, 17 Dec 2009, Devin Reade wrote: > >> If you're going to be doing LDAP-based authentication on the server >> that is running the LDAP server, watch out for this bug, which has been >> around since at least FC5. It's still a problem as of FC10: >> <https://bugzilla.redhat.com/show_bug.cgi?id=182464> > > I disagree that this is a bug. It's not a problem if you configure > ldap.conf properly. For example, using > > nss_initgroups_ignoreusers root,ldap,named,avahi,haldaemon,dbus Actually, if this is in a business setting, and esp. if they're in server rooms, turn *off* avahi-daemon, and fix iptables so that there's no hole for it. mark _______________________________________________ CentOS mailing list CentOS@xxxxxxxxxx http://lists.centos.org/mailman/listinfo/centos
Re: Problems with nss_ldap - where to start?
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- To: "CentOS mailing list" <centos@xxxxxxxxxx>
- Subject: Re: Problems with nss_ldap - where to start?
- From: m.roth@xxxxxxxxx
- Date: Thu, 17 Dec 2009 11:47:38 -0700 (MST)
- Delivered-to: centos@xxxxxxxxxx
- Importance: Normal
- In-reply-to: <alpine.LRH.0.9999.0912171330530.11326@xxxxxxxxxxxxxxxxxxx>
- References: <d3d177bd0912161124i189ceacct3d38fbfbd7285009@xxxxxxxxxxxxxx> <d3d177bd0912161149u64fc6216o637fcbcc6b513aa2@xxxxxxxxxxxxxx> <d3d177bd0912161207j48014f24x9ee6915511e69cee@xxxxxxxxxxxxxx> <1260995066.23452.417.camel@xxxxxxxxxxxxxxxxxxxxxxxxxxx> <d3d177bd0912161239pbda53a3iaf6fe936a19d4f74@xxxxxxxxxxxxxx> <1260996459.23452.424.camel@xxxxxxxxxxxxxxxxxxxxxxxxxxx> <d3d177bd0912161302r6c4b2c35x87bac95ae9fedcbf@xxxxxxxxxxxxxx> <1260999319.23452.434.camel@xxxxxxxxxxxxxxxxxxxxxxxxxxx> <d3d177bd0912161338r5ebc8835j1381c0bb363c4b59@xxxxxxxxxxxxxx> <1260999921.23452.439.camel@xxxxxxxxxxxxxxxxxxxxxxxxxxx> <d3d177bd0912161413t566d5528md5f685c756831a29@xxxxxxxxxxxxxx> <6B35F62A27347D4F114F5230@xxxxxxxxxxxxxx> <alpine.LRH.0.9999.0912171330530.11326@xxxxxxxxxxxxxxxxxxx>
- User-agent: SquirrelMail/1.4.13
- References:
- Problems with nss_ldap - where to start?
- From: Peter Serwe
- Re: Problems with nss_ldap - where to start?
- From: Peter Serwe
- Re: Problems with nss_ldap - where to start?
- From: Peter Serwe
- Re: Problems with nss_ldap - where to start?
- From: Craig White
- Re: Problems with nss_ldap - where to start?
- From: Peter Serwe
- Re: {Disarmed} Re: Problems with nss_ldap - where to start?
- From: Craig White
- Re: {Disarmed} Re: Problems with nss_ldap - where to start?
- From: Peter Serwe
- Re: {Disarmed} Re: Problems with nss_ldap - where to start?
- From: Craig White
- Re: {Disarmed} Re: Problems with nss_ldap - where to start?
- From: Peter Serwe
- Re: {Disarmed} Re: Problems with nss_ldap - where to start?
- From: Craig White
- Re: {Disarmed} Re: Problems with nss_ldap - where to start?
- From: Peter Serwe
- Re: Problems with nss_ldap - where to start?
- From: Devin Reade
- Re: Problems with nss_ldap - where to start?
- From: Steve Thompson
- Problems with nss_ldap - where to start?
- Prev by Date: Re: PHP-5.3 in Centos 5.4
- Next by Date: Updated request tracker install instructions for centos 5.4?
- Previous by thread: Re: Problems with nss_ldap - where to start?
- Next by thread: Re: Problems with nss_ldap - where to start?
- Index(es):
 |