Just FYI the patch has been integrated into upstream version 255.
Thanks,
Adrian
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
I've found and fixed the bug (attached) which I'll forward upstream too.
The first call, it sees __config undefined, so it allocates it, tries to
read the config file, fails and returns NSS_UNAVAIL. The second
time however, __config is defined. This leads to the assertion failing.
The fix is jus
Stephen Frost -- 4.10.2006 13:23 --:
> I don't see the point in moving it to another file. Either you're
> running nscd and it doesn't matter what libnss-ldap.conf looks like, or
> you're not and therefore bindpw must be available to everyone. At most
> you've moved the permission issue from lib
* Damyan Ivanov ([EMAIL PROTECTED]) wrote:
> Stephen Frost -- 3.10.2006 22:31 --:
> > It needs to be 600 if you want tight control on your LDAP directory such
> > that everyone has to connect using a password and you don't want that
> > password available to everyone. libnss-ldap.conf w/ mode 600
Stephen Frost -- 3.10.2006 22:31 --:
> * Damyan Ivanov ([EMAIL PROTECTED]) wrote:
>> What I don't understand is why libnss-ldap.conf *needs* to be 0600 at
>> all. A big warning in the file (todo) and debconf placing password in
>> a separate file (done) should be enough, IMHO.
>
> It needs to be
Hi,
I installed libnss-ldap from unstable just now on an etch system, but I had
accidentally already edited nsswitch.conf to use "ldap compat" for passwd,
group and shadow.
The libnss-ldap package asked me questions, all was well, and then kaboom...
Setting up libnss-ldap (251-5.2) ...
perl: lda
* Damyan Ivanov ([EMAIL PROTECTED]) wrote:
> What I don't understand is why libnss-ldap.conf *needs* to be 0600 at
> all. A big warning in the file (todo) and debconf placing password in
> a separate file (done) should be enough, IMHO.
It needs to be 600 if you want tight control on your LDAP dire
Stephen Frost -- 30.09.2006 20:02 --:
> * Damyan Ivanov ([EMAIL PROTECTED]) wrote:
>> It is my belief that the default configuration makes exactly the right
>> thing - stores the password in a separate (and protected) file. Why then
>> fiddle with libnss-ldap.conf's permissions at all and break thi
* Damyan Ivanov ([EMAIL PROTECTED]) wrote:
> Right now, if I put password in /etc/libnss-ldap.conf (and therefore
> protect the file with 0600 permissions), only root can access ldap via
> nss. Others get assertions. This makes the password-along-everything
> setup highly unusable (to me).
>
> It
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Steinar H. Gunderson написа:
\> If you use passwords in your libnss-ldap configuration, it is usually a
> good idea to have the configuration set with mode 0600 (readable and
> writable only by the file's owner).
> .
> Note: As a sanity check
severity 375533 normal
tanks
On Fri, Sep 29, 2006 at 03:10:18PM +0200, Steinar H. Gunderson wrote:
> So if you explicitly set it, and then stop nscd, it will break. That's not
> really anything libnss-ldap can do anything about, is it?
I'm downgrading this; I can't find that it would be RC, given
On Fri, Sep 29, 2006 at 04:36:30PM +0400, Damyan Ivanov wrote:
> It asks here via debconf. Perhaps the question is asked only the first
> time the package in installed. dpkg-reconfigure makes it ask the
> question again.
Hm.
The template says:
_Description: make configuration readable/writeabl
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Steinar H. Gunderson написа:
> On Tue, Sep 26, 2006 at 01:29:40PM +0300, Damyan Ivanov wrote:
>> Just wanted to confirm that changing /etc/libnss-ldap.conf's
>> permissions to 0644 fixes the problem.
>
> But how did it get to 0600 in the first place?
On Tue, Sep 26, 2006 at 01:29:40PM +0300, Damyan Ivanov wrote:
> Just wanted to confirm that changing /etc/libnss-ldap.conf's
> permissions to 0644 fixes the problem.
But how did it get to 0600 in the first place? The postinst installs it to
0644... Did you ever change this? I'm unable to reproduc
Hi,
Just wanted to confirm that changing /etc/libnss-ldap.conf's
permissions to 0644 fixes the problem.
To do this properly, I had to re-configure the package
(dpkg-reconfigure libnss-ldap), since hand-fixed perms get reset on
upgrade.
Does libnss-ldap.conf need to be 0600 at all? As far as I se
Hi,
this problem exists, when /etc/libnss-ldap.conf is not readeable
by user.
[EMAIL PROTECTED]: strace id root
[...]
geteuid32() = 34
futex(0xb7dd0ac4, FUTEX_WAKE, 2147483647) = 0
open("/etc/libnss-ldap.conf", O_RDONLY) = -1 EACCES (Permission denied)
rt_sigaction(SIG
reopen 375533
thanks
I think this bug is not resolved. When I use 'id' to check a user id, I get
the error common in this bug report:
% id statd
id: ldap-nss.c:1312: do_init: Assertion
`cfg->ldc_uris[__session.ls_current_uri] != ((void *)0)' failed.
uid=107(statd) gid=65534(nogroup)
zsh: abort
This bug is present in all builds of the 251 package. I had to downgrade
to the 238-1.2 build for my system to work again. Except for me, the
problem only showed up in packages that use SASL (e.g. Postfix and Cyrus
on my system). SSH, FTP, all the others work fine. See below for
specific error
I have the same situation, with 251-5, but on a system where I'm only
logged in as a user (all user accounts are stored in LDAP). Now I cannot
even get a root shell to fix the situation, since 'su' and 'sudo' don't
work!
'su' just hangs interminably, until I press Ctrl-C. 'sudo' says:
/$ sudo apt
Ok, so I finally managed to login as root with ssh, after a looong hang
before the login prompt appeared (up to 30 minutes, not sure exactly).
So I should be able to restore things from here.
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL P
reassign 375533 libnss-ldap
thanks
On Wed, Jul 05, 2006 at 09:20:33AM +0200, Adrien Clerc wrote:
> krusader: ldap-nss.c:1312: do_init: l'assertion «
> cfg->ldc_uris[__session.ls_current_uri] != ((void *)0) » a échoué.
ldap-nss.c is (obviously?) from libnss-ldap. Reassigning.
/* Steinar */
--
Hi,
Today, I wanted to launch krusader, and here is the log :
[EMAIL PROTECTED]:~/Mes Documents$ krusader
krusader: Initialisising useractions...
krusader: 5 useractions read.
krusader: ldap-nss.c:1312: do_init: l'assertion «
cfg->ldc_uris[__session.ls_current_uri] != ((void *)0) » a échoué.
package: tar
version: 1.15.91-1
severity: grave
Hi,
today I upgrade my unstable box and now it seems I cannot use tar
anymore:
[...]
[EMAIL PROTECTED]:/tmp/hylafax-4.3.0/cc$ LC_ALL=C LANG=C tar xzf
../../hylafax_4.3.0.orig.tar.gz
tar: ldap-nss.c:1312: do_init: Assertion
`cfg->ldc_uris[__session
23 matches
Mail list logo
