clone 638007 -1 -2 reassign -1 autofs5-ldap retitle -1 autofs5-ldap: please add "automount: files ldap" to /etc/nsswitch.conf reassign -2 sudo-ldap retitle -2 sudo-ldap: please add "sudoers: files ldap" to /etc/nsswitch.conf merge -2 610600
thanks Hi, On Thu, Aug 25, 2011 at 10:37:36PM +0200, Arthur de Jong wrote: > On Tue, 2011-08-23 at 18:06 +0200, Andreas B. Mundt wrote: > > I prepared a simple patch now, to include automount and sudoers to the > > list of services to be configured. > > I have a bit of a problem with this patch because it doesn't actually do > anything related to libnss-ldapd. I would be better if the autofs-ldap > and sudo-ldap packages prompted for modification of /etc/nsswitch.conf. > > I don't think it is a good idea to configure autofs-ldap and sudo-ldap > from the libnss-ldapd package as they are not related. There is no > dependency relationship between them and there are valid use cases to > use either one without the other (or use nss_ldap instead of > nss-pam-ldapd). I agree with that. The best is probably to add the line(s) when sudo-ldap and/or autofs5-ldap is installed. Respectively: sudoers: files ldap automount: files ldap The *-ldap packages make only sense with LDAP as datasource in /etc/nsswitch.conf, so the line should be there in any case, and gone if the corresponding package is removed. Modifying nsswitch.conf shouldn't be a problem, quoting from <URL:http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=610600#34>: "Usually, policy forbids that a package modifies the "configuration file" of another package, but in this case /etc/nsswitch.conf is not a conffile in dpkg sense but just a default. This is on purpose so that packages that need to modify such file do so without having to ask me about that. Therefore, I think we should just modify sudo-ldap so that the required line is added to /etc/nsswitch.conf on postinst and removed on purge, as only users of sudo-ldap need such line, i.e. please do not rely on base-files and just do with nsswitch.conf whatever is required for it to work with your package." The same applies for autofs5-ldap. I clone/merge the bugreport, feel free to reasign it completely, but perhaps it's good to leave it here for the record. Thanks, Andi -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
