[Bug 771698] Re: /usr/bin/id does not show ldap groups
Jamie Strandboge
jamie at ubuntu.com
Wed Apr 27 13:57:17 UTC 2011
I am unmarking this as a security issue. If a user is a part of a group
that is listed in getent, the user is supposed to be in that group and
any DAC checks should be checking for that. The fact that id shows fewer
groups is not a security issue-- the user should have fewer privileges
than with the intended ldap groups.
Also, for a developer to help with this, please attach your pam
configuration and nsswitch.conf as a start.
** Visibility changed to: Public
** This bug is no longer flagged as a security vulnerability
** Changed in: libnss-ldap (Ubuntu)
Status: New => Incomplete
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to libnss-ldap in Ubuntu.
https://bugs.launchpad.net/bugs/771698
Title:
/usr/bin/id does not show ldap groups
More information about the Ubuntu-server-bugs
mailing list