RSS feed

Re: ldap server unavailable and pam response

[Date Prev][Date Next] [Thread Prev][Thread Next]

Re: ldap server unavailable and pam response

On Tue, 2010-11-16 at 11:13 +0100, Pierre Gambarotto wrote:
> On 16/11/2010 08:33, Pierre Gambarotto wrote:
> > I found a little problem : when ldap servers are unavaiable (typically
> > because of a network problem), the pam layer returns the code for "user
> > unknown" whereas it should return "authinfo unavail".
> > Tested with 0.7.2, 0.7.6 and 0.7.12.
> >
> > I found this strange behaviour when trying pam_ldap in cunjunction with
> > pam_ccreds
> > I hope I am clear enough in my explanations :-)
> I have a  patch fixing this issue, working for me. But I don't know the
> code enough to predict any unwanted effect.

Thanks for the bugreport and patch. I've modified your patch a bit and
committed it to the development version of nss-pam-ldapd [1].

I was wondering about the change to nslcd/myldap.c though. It returns
LDAP_UNAVAILABLE instead of the last error code returned. Is that needed
for this to work (haven't done much testing yet)? I've taken a slightly
different approach.

Again, thanks for your patch, very much appreciated.


-- arthur - - --
To unsubscribe send an email to or see