Ldap and Ubuntu server a no go - serious problems here.

George Farris farrisg at cc.mala.bc.ca
Wed Sep 28 10:10:56 CDT 2005


On Fri, 2005-09-16 at 14:54 -0700, George Farris wrote:
> On Fri, 2005-09-16 at 23:36 +0200, Ivan Krstic wrote:
> > George Farris wrote:
> > > Yes, this sounds like libnss-ldap being crappy.  It happens whenever 
> > > libnss cannot contact the ldap server.  I would suggest not using 
> > > libnss-ldap on your ldap servers. 

Well after a long run of a couple of weeks it turns out the the trouble
seems to be with /etc/pam.d/common-session.

Once I changed this from:
#
session   sufficient      pam_unix.so
session   sufficient      pam_ldap.so

to

session   sufficient      pam_unix.so
#session   sufficient      pam_ldap.so

Everything has been running since.  One or possibly more cron jobs do
not like this.

I now have a Hoary with ldbm, a Breezy with bdb and a Breezy with ldbm
running for many days.

I have seem many, many examples of configuration of these files out on
the net and they are all slightly different.  One actually suggests
"session optional pam_ldap.so" which I haven't tried yet, it may work.

Comments?





More information about the ubuntu-devel mailing list