[Bug 423252] Re: NSS using LDAP+SSL breaks setuid applications like su and sudo
Lawren Quigley-Jones
lawrenqj at gmail.com
Fri May 7 17:22:45 BST 2010
My experience with libnss-ldap is that nscd allows sudo but not su.
Also the GUI authentication doesn't work.
I just got around to testing libnss-ldapd and I can verify that both sudo and su work there.
Ubuntu's gui authentication process does not work though. When you try
to perform a privileged action like adding a printer it opens the
"Authentication" dialogue and asks for a password. When you enter an
ldap password it returns "bad password" and the entire printer config
system freezes. The following errors are from auth.log:
May 7 11:53:11 engine cupsd: pam_unix(cups:auth): check pass; user unknown
May 7 11:53:11 engine cupsd: pam_unix(cups:auth): authentication failure; logname= uid=0 euid=0 tty=cups ruser= rhost=localhost
May 7 11:53:11 engine cupsd: pam_unix(cups:account): could not identify user (from getpwnam(lquigley))
--
NSS using LDAP+SSL breaks setuid applications like su and sudo
https://bugs.launchpad.net/bugs/423252
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to libnss-ldap in ubuntu.
More information about the Ubuntu-server-bugs
mailing list