[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: PAM_LDAP

To: mgeddes@xavier.sa.edu.au
Subject: Re: PAM_LDAP
From: Turbo Fredriksson <turbo@nocrew.org>
Date: 30 Dec 1999 21:44:20 +0100
Cc: Open LDAP Mailing list <openldap-software@OpenLDAP.org>
In-reply-to: Matthew Geddes's message of "Mon, 20 Dec 1999 13:37:13 +1030"
References: <385D9D61.87FBC482@xavier.sa.edu.au>
User-agent: Gnus/5.070099 (Pterodactyl Gnus v0.99) Emacs/20.4

Quoting Matthew Geddes <mgeddes@xavier.sa.edu.au>:

> /etc/nsswitch.conf has LDAP first and files next (so I can still log
> in ;-)).  When  I check my logs, there  are messages like: PAM_LDAP:
> ldap_search_s: No Such Object

Just a note of what I have  just been bitten by. Have it the other way
around  (files  first  and  then  ldap),  without  ordinary  users  in
/etc/{passwd|group}, and  a proper password for root.  What have just
(yesterday)  bit  me,  was  that  I  was playing  with  a  CGI  script
(web2ldap), and Roxen  (the web server) OR the  CGI script is blocking
the LDAP server. Hence, i can't  do anything, because it will not fall
back  to files  for some  reason (so  that i  can su  and restart/stop
slapd/Roxen or to reboot the system).

Having a 'empty' passwd file (with only the system accounts), with a
root account to use, would let me to still use the system (al beight
not as a ordinary user)...

I don't  know if this  is in  the FAQ/QSG, but  if it isn't,  maybe it
should be entered?
-- 
supercomputer Semtex arrangements nuclear Clinton ammunition SDI
Kennedy security BATF assassination FSF cryptographic Peking Albanian

References:
- PAM_LDAP
  - From: Matthew Geddes <mgeddes@xavier.sa.edu.au>

Prev by Date: How do you JOIN with LDAP?
Next by Date: add radius support to slapd server
Index(es):
- Chronological
- Thread