[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: ldbm and deref aliases

To: Hallvard B Furuseth <h.b.furuseth@usit.uio.no>
Subject: Re: ldbm and deref aliases
From: Howard Chu <hyc@symas.com>
Date: Wed, 12 Jan 2005 21:23:50 -0800
Cc: Christian Gellweiler <gelli@mindblast.info>, OpenLDAP-Software <openldap-software@OpenLDAP.org>
In-reply-to: <hbf.20050113pixq@bombur.uio.no>
References: <1105552085.5671.32.camel@unmatched.i.schlund.de> <hbf.20050113pixq@bombur.uio.no>
User-agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8a5) Gecko/20041101

Hallvard B Furuseth wrote:

Christian Gellweiler writes:

In the ou=people tree are all persons in a given company. They are organized in groups listed in the ou=groups tree stored as aliases to the ou=people tree.
Note that this means a search operation inside ou=groups with
LDAP_DEREF_ALWAYS will not make use of indices, since it much follow
each alias to examine the aliased entry, and indexing is not done
"through" aliases.
At least that was the situation some years ago when we got rid of our aliases, and finally got rid of the complaints about timeouts from people whose clients searched with LDAP_DEREF_ALWAYS.

I note that this post is talking about aliases in back-ldbm, which are badly broken. Aliases in (2.2) back-bdb work properly, even with indices. As usual, the best advice here is to upgrade and quit using back-ldbm.

--
 -- Howard Chu
 Chief Architect, Symas Corp.       Director, Highland Sun
 http://www.symas.com               http://highlandsun.com/hyc
 Symas: Premier OpenSource Development and Support

References:
- ldbm and deref aliases
  - From: Christian Gellweiler <gelli@mindblast.info>
- Re: ldbm and deref aliases
  - From: Hallvard B Furuseth <h.b.furuseth@usit.uio.no>

Prev by Date: slapcat vs. ldapsearch
Next by Date: Re: slapcat vs. ldapsearch
Index(es):
- Chronological
- Thread