On Fri, 2013-07-26 at 10:26 -0400, Barry deFreese wrote: > Please see the following reasons for the removal request: > > * Orphaned. > * RC buggy. > * Alternatives exist (libnss-ldapd, sssd).
Hi, I'm the maintainer (and upstream) of nss-pam-ldapd. Since libnss-ldap and libpam-ldap are related, I'll comment in one email. While I think nss-pam-ldapd is in general a good replacement for libnss-ldap and libpam-ldap in most environments there are a few differences that remain: - nss-pam-ldapd only got support for nested groups in the 0.9 series which is still under development - LDAP password policy is only supported in the 0.9 series - I'm not sure how well it integrates with nss_updatedb and libpam-ccreds - the PAM implementation only supports BIND authentication - password change only supports the LDAP password modify EXOP operation (for most other differences there should be equivalent functionality in nss-pam-ldapd) (I can't comment on sssd because I don't have enough first-hand experience with it) Also, judging by the popcon numbers: http://qa.debian.org/popcon-png.php?packages=nslcd%20libnss-ldapd%20libpam-ldapd%20libnss-ldap%20libpam-ldap%20libnss-sss%20libpam-sss&show_installed=on&want_legend=on the older implementations are still more popular than the alternatives. In short, I think there is some value in keeping libnss-ldap and libpam-ldap in Debian. The packages could be in better shape though and deserve a new maintainer (#699114 and #699116). Thanks, -- -- arthur - adej...@debian.org - http://people.debian.org/~adejong --
signature.asc
Description: This is a digitally signed message part
