RSS feed

nss-pam-ldapd branch master updated. 0.9.9-1-g3760b43

[Date Prev][Date Next] [Thread Prev][Thread Next]

nss-pam-ldapd branch master updated. 0.9.9-1-g3760b43

This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "nss-pam-ldapd".

The branch, master has been updated
       via  3760b43241b579406242961c551b9fb25b0c673b (commit)
      from  fe26b947b9cbab4fe6e7a441b28e5a97f8e234b0 (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------

commit 3760b43241b579406242961c551b9fb25b0c673b
Author: Arthur de Jong <>
Date:   Sat Jul 21 11:14:08 2018 +0200

    Create /var/run/nslcd/socket after dropping privileges
    This is needed to avoid a problem where a call to initgroups() can
    result in NSS lookups. If nscd is configured the mechanism to avoid
    loopback lookups using nss_ldap_enablelookups will not work and cause
    for delays on start-up.
    Note that this changes ownership of the socket to the user running

diff --git a/nslcd/nslcd.c b/nslcd/nslcd.c
index 82c09ab..be14ac9 100644
--- a/nslcd/nslcd.c
+++ b/nslcd/nslcd.c
@@ -2,7 +2,7 @@
    nslcd.c - ldap local connection daemon
    Copyright (C) 2006 West Consulting
-   Copyright (C) 2006-2017 Arthur de Jong
+   Copyright (C) 2006-2018 Arthur de Jong
    This library is free software; you can redistribute it and/or
    modify it under the terms of the GNU Lesser General Public
@@ -769,8 +769,6 @@ int main(int argc, char *argv[])
-  /* create socket */
-  nslcd_serversocket = create_socket(NSLCD_SOCKET);
   /* start subprocess to do invalidating if reconnect_invalidate is set */
   for (i = 0; i < LM_NONE; i++)
     if (nslcd_cfg->reconnect_invalidate[i])
@@ -825,6 +823,8 @@ int main(int argc, char *argv[])
     log_log(LOG_DEBUG, "setuid(%lu) done", (unsigned long int)nslcd_cfg->uid);
+  /* create socket */
+  nslcd_serversocket = create_socket(NSLCD_SOCKET);
   /* start worker threads */
   log_log(LOG_INFO, "accepting connections");
   nslcd_threads = (pthread_t *)malloc(nslcd_cfg->threads * sizeof(pthread_t));


Summary of changes:
 nslcd/nslcd.c | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

To unsubscribe send an email to or see