Bob Proulx wrote:
I strongly believe that not having a root entry in the local password
file is a wrong configuration. I strongly believe that configuring a
network override of local files is a wrong configuration.
At boot time when the network is not yet configured the local file
will be searched first, then the network will be attempted but will
fail without delay. The values of 0:0 will resolve to root:root from
the data in the local file. The operation will proceed.
The problem is that I don't get this "failure without delay".
/etc/init.d/xorg-common does a couple of chown 0:0,
attempts to contact the ldap server on 127.0.0.1. The interface
is up, but ldap is not yet running due to the startup order.
So xorg.common halts and no more startup scripts run.
[...]
Therefore I don't see how these steps can be avoided. A script
wishing to be completely local should use 'chown root:root' and the
system should have a root /etc/passwd entry and /etc/nsswitch.conf
should search local files before network databases.
I now see that chown must work the way it does, with people actually
using numeric usernames. Having nsswitch.conf searching local
files first is fine with me.
I think it'd be nice to fix this for future ldap users, what would be the
correct approach?
* report a bug against xorg-common, it should use "chown root:root"?
* report a bug against slapd, it should start before xorg-common?
* report a bug against libnss-ldap, it should advice the admin to create
the "0" user and "0" group when making the change to nsswitch.conf?
* Or several of the above?
Helge Hafting
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
