Your message dated Sat, 03 Jul 2010 16:50:25 +0000
with message-id <e1ov5v7-0002jm...@franck.debian.org>
and subject line Bug#585968: fixed in nss-pam-ldapd 0.7.7
has caused the Debian Bug report #585968,
regarding nslcd: init.d script should start after $named at boot
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
585968: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=585968
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: nslcd
Version: 0.7.6
Severity: serious
Tags: patch
User: debian-...@lists.debian.org
UserTags: debian-edu
User: initscripts-ng-de...@lists.alioth.debian.org
Usertags: incorrect-dependency
When the DNS server is on the local machine and the nslcd.conf file
uses DNS (name or SRV records) to find the LDAP server, nslcd
currently fail to start at boot because it starts before the DNS
server is operational.
Because of this, I believe the nslcd init.d script should be changes
to have an optional dependency on the $named virtual boot facility, to
ensure that it starts after local DNS servers are started.
I discovered this using the Debian Edu main-server profile, where the
several services are running on the same machine.
Here is a patch to implement this change.
diff -ur nss-pam-ldapd-0.7.6/debian/nslcd.init
nss-pam-ldapd-0.7.6-pere/debian/nslcd.init
--- nss-pam-ldapd-0.7.6/debian/nslcd.init 2010-05-23 21:31:22.000000000
+0200
+++ nss-pam-ldapd-0.7.6-pere/debian/nslcd.init 2010-06-15 11:05:48.552338000
+0200
@@ -23,7 +23,7 @@
# Provides: nslcd
# Required-Start: $remote_fs $syslog
# Required-Stop: $remote_fs $syslog
-# Should-Start: slapd
+# Should-Start: $named slapd
# X-Start-Before: $mail-transport-agent mail-transport-agent exim4 sendmail
nullmailer masqmail citadel cron atd autofs am-utils apache2
# Default-Start: 2 3 4 5
# Default-Stop: 0 1 6
Happy hacking,
--
Petter Reinholdtsen
--- End Message ---
--- Begin Message ---
Source: nss-pam-ldapd
Source-Version: 0.7.7
We believe that the bug you reported is fixed in the latest version of
nss-pam-ldapd, which is due to be installed in the Debian FTP archive:
libnss-ldapd_0.7.7_i386.deb
to main/n/nss-pam-ldapd/libnss-ldapd_0.7.7_i386.deb
libpam-ldapd_0.7.7_i386.deb
to main/n/nss-pam-ldapd/libpam-ldapd_0.7.7_i386.deb
nslcd_0.7.7_i386.deb
to main/n/nss-pam-ldapd/nslcd_0.7.7_i386.deb
nss-pam-ldapd_0.7.7.dsc
to main/n/nss-pam-ldapd/nss-pam-ldapd_0.7.7.dsc
nss-pam-ldapd_0.7.7.tar.gz
to main/n/nss-pam-ldapd/nss-pam-ldapd_0.7.7.tar.gz
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 585...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Arthur de Jong <adej...@debian.org> (supplier of updated nss-pam-ldapd package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Sat, 03 Jul 2010 17:00:00 +0200
Source: nss-pam-ldapd
Binary: nslcd libnss-ldapd libpam-ldapd
Architecture: source i386
Version: 0.7.7
Distribution: unstable
Urgency: low
Maintainer: Arthur de Jong <adej...@debian.org>
Changed-By: Arthur de Jong <adej...@debian.org>
Description:
libnss-ldapd - NSS module for using LDAP as a naming service
libpam-ldapd - PAM module for using LDAP as an authentication service
nslcd - Daemon for NSS and PAM lookups using LDAP
Closes: 585639 585968
Changes:
nss-pam-ldapd (0.7.7) unstable; urgency=low
.
* don't use use_authtok for password modification by default
* fine-tune pam-auth-update configuration after discussion with Steve
Langasek (see: #583492)
Note that this currently requires that shadow information is also provided
by LDAP (in /etc/nsswitch.conf).
* ensure that nslcd is started after hostname lookups are available so
getting to the LDAP server via DNS will work (patch by Petter
Reinholdtsen) (closes: #585968)
* start k5start from the init script to keep the Kerberos ticket active if
nslcd is configured for SASL GSSAPI Kerberos authentication, based on a
patch by Daniel Dehennin (closes: #585639)
* upgrade to standards-version 3.9.0 (switch to Breaks/Replaces instead of
Conflicts)
* refactoring and simplification of PAM module which also improves logging
* implement a nullok PAM option and disable empty passwords by default
* portability improvements and other minor code improvements
* the mechanism to disable name lookups through LDAP from within the nslcd
process has been improved
* the undocumented use_sasl option has been removed (specifying sasl_mech
now implies use_sasl)
* the sasl_mech, sasl_realm, sasl_authcid, sasl_authzid and sasl_secprops
configuration options are now documented
Checksums-Sha1:
1cad6aff41472462bc97d6d99ef0e175d2714f98 1102 nss-pam-ldapd_0.7.7.dsc
dddb1a15a363dd4abbb1280a4690ad595b18d919 457607 nss-pam-ldapd_0.7.7.tar.gz
5f4a2757f41bdbfe0b0bf7ee5f6fa793c2bc1824 120012 nslcd_0.7.7_i386.deb
afe9fc72eb120d7dec261d0803c4f4447d7b808f 41710 libnss-ldapd_0.7.7_i386.deb
fc64e32fb28aea968a9266567c7fd6287b1c18d3 30554 libpam-ldapd_0.7.7_i386.deb
Checksums-Sha256:
24a145bdc493ba3aa4b3dd57ad4e870ba02ed4986ec1a6852823b22c1543b660 1102
nss-pam-ldapd_0.7.7.dsc
fd6397990595243d3116fed2da409f582187329cc42794af2e47943a66ed363d 457607
nss-pam-ldapd_0.7.7.tar.gz
c32008edcc5e24247af41eff218b2e0543196ac2e0acd7bd80d6401f3305943e 120012
nslcd_0.7.7_i386.deb
dadadeb8d4d56a2b2a1a4058a78f307af27c391fe655cba162002dad8a6c4aef 41710
libnss-ldapd_0.7.7_i386.deb
c73d4475febe4acbe1e638ca38b97418d97303796630f1c85f44aa84dbdc78d1 30554
libpam-ldapd_0.7.7_i386.deb
Files:
6912226becad6a0e50690b1e6e0b3fdd 1102 admin extra nss-pam-ldapd_0.7.7.dsc
7b37cc13b465495f90248e1209a05595 457607 admin extra nss-pam-ldapd_0.7.7.tar.gz
a063773b1c3433a267007474a8cde2be 120012 admin extra nslcd_0.7.7_i386.deb
0a6013942883bd0770ed1ebfe466a196 41710 admin extra libnss-ldapd_0.7.7_i386.deb
3cb4fa72c3570ea2886c595e19887ac0 30554 admin extra libpam-ldapd_0.7.7_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
iEYEARECAAYFAkwvYTcACgkQVYan35+NCKeQ3wCg414Jx1inYw03V/3iBVmvR1hD
DeEAniFXKRshynqDDDKI8J+xNW9Bpjtd
=BKBd
-----END PGP SIGNATURE-----
--- End Message ---
