[Pkg-openldap-devel] r750 - in openldap/trunk-2.1:
debian libraries/libldap
Quanah Gibson-Mount
quanah at stanford.edu
Wed Nov 15 02:07:39 CET 2006
--On Monday, November 13, 2006 7:57 PM -0800 Russ Allbery <rra at debian.org>
wrote:
> Quanah Gibson-Mount <quanah at stanford.edu> writes:
>
>> Howard Chu notes:
>
>> [19:07] Howard Chu: that's the wrong fix
>> [19:07] Howard Chu: libnss-ldap should set NOINIT for its own usage.
>> [19:09] Quanah: so this patch doesn't really fix anything?
>> [19:09] Howard Chu: probably not.
>
> Regardless of the merits of OpenLDAP reading dotfiles on library
> initialization without a flag (er), libnss-ldap should probably get that
> fix, and libpam-ldap too while we're at it.
Okay, it is LDAPNOINIT (rather than NOINIT).
But Howard further clarifies that as long as nss/pam_ldap fully specify
their ldap.conf file to use, the users' .ldaprc file will never be read.
So the only time this is an issue is if someone hasn't really configured
nss/pam properly, and I assume that debian does things right.
--Quanah
--
Quanah Gibson-Mount
Principal Software Developer
ITS/Shared Application Services
Stanford University
GnuPG Public Key: http://www.stanford.edu/~quanah/pgp.html
More information about the Pkg-openldap-devel
mailing list