Re: Preventing NSS from querying LDAP for system users

[Date Prev][Date Next] [Thread Prev][Thread Next]

From: Ryan Lynch <ryan.b.lynch [at] gmail.com>
To: Ryan Steele <ryans [at] aweber.com>
Cc: nss-pam-ldapd-users [at] lists.arthurdejong.org, Arthur de Jong <arthur [at] arthurdejong.org>
Subject: Re: Preventing NSS from querying LDAP for system users
Date: Fri, 12 Mar 2010 17:52:07 -0500

Hey, Ryan

> Unfortunately, nscd is not a good solution.  It is fraught with many 
> problems, and in addition was clearly not designed
> with security in mind (doesn't work with TLS/SSL).

Would you mind explaining what you mean about nscd problems? I am
having a hard time seeing how it could possibly be insecure, but if
you know something, I would appreciate hearing about it.

Also, are you sure about nscd not working with TLS? Again, as far as I
understand how nss-ldapd works, I can't see how nscd would break if
the connection to the LDAP server uses TLS.

-Ryan
--
To unsubscribe send an email to
nss-pam-ldapd-users-unsubscribe@lists.arthurdejong.org or see
http://lists.arthurdejong.org/nss-pam-ldapd-users

Preventing NSS from querying LDAP for system users, Ryan Steele
- Re: Preventing NSS from querying LDAP for system users, Arthur de Jong
  - Re: Preventing NSS from querying LDAP for system users, Ryan Steele
    - Re: Preventing NSS from querying LDAP for system users, Ryan Lynch
    - Re: Preventing NSS from querying LDAP for system users, Arthur de Jong
      - Re: Preventing NSS from querying LDAP for system users, Ryan Steele
        
        Re: Preventing NSS from querying LDAP for system users, Arthur de Jong
        
        Re: Preventing NSS from querying LDAP for system users, Ryan Steele

Prev by Date: Re: Preventing NSS from querying LDAP for system users
Next by Date: Re: Preventing NSS from querying LDAP for system users
Previous by thread: Re: Preventing NSS from querying LDAP for system users
Next by thread: Re: Preventing NSS from querying LDAP for system users