min-uid

[Date Prev][Date Next] [Thread Prev][Thread Next]

From: Egbert <egbert [at] vandenbussche.nl>
To: nss-pam-ldapd-users [at] lists.arthurdejong.org
Reply-to: egbert [at] vandenbussche.nl
Subject: min-uid
Date: Sat, 08 Feb 2014 23:04:28 +0100

Hi Arthur.
Why do I see incoming connections to the ldap server (hcc-ldap-lb1) from
a client (172.31.1.1) for low uid numbers? I've set te value to 300 but
I see attempts to do lookups for low uid's like nslcd (106:116)? These
users are not to be found in ldap; they are only in the
/etc/passwd|shadow|group files on the client. Nowhere else.

Feb  8 22:02:57 hcc-ldap-lb1 slapd[13588]: conn=1767 fd=50 ACCEPT from
IP=172.31.1.1:40237 (IP=0.0.0.0:389)
Feb  8 22:02:57 hcc-ldap-lb1 slapd[13588]: conn=1767 op=0 EXT
oid=1.3.6.1.4.1.1466.20037
Feb  8 22:02:57 hcc-ldap-lb1 slapd[13588]: conn=1767 op=0 STARTTLS
Feb  8 22:02:57 hcc-ldap-lb1 slapd[13588]: conn=1767 op=0 RESULT oid=
err=0 text=
Feb  8 22:02:57 hcc-ldap-lb1 slapd[13588]: conn=1767 fd=50 TLS
established tls_ssf=128 ssf=128
Feb  8 22:02:57 hcc-ldap-lb1 slapd[13588]: conn=1767 op=1 BIND
dn="cn=hobbynetlogin,ou=applicaties,dc=hcc,dc=nl" method=128
Feb  8 22:02:57 hcc-ldap-lb1 slapd[13588]: conn=1767 op=1 BIND
dn="cn=hobbynetlogin,ou=applicaties,dc=hcc,dc=nl" mech=SIMPLE ssf=0
Feb  8 22:02:57 hcc-ldap-lb1 slapd[13588]: conn=1767 op=1 RESULT tag=97
err=0 text=
Feb  8 22:02:57 hcc-ldap-lb1 slapd[13588]: conn=1767 op=2 SRCH
base="ou=users,dc=hcc,dc=nl" scope=2 deref=0
filter="(&(objectClass=posixAccount)(uid=nslcd))"
Feb  8 22:02:57 hcc-ldap-lb1 slapd[13588]: conn=1767 op=2 SRCH attr=uid
uidNumber
Feb  8 22:02:57 hcc-ldap-lb1 slapd[13588]: conn=1767 op=2 SEARCH RESULT
tag=101 err=0 nentries=0 text=
Feb  8 22:02:57 hcc-ldap-lb1 slapd[13588]: conn=1767 op=3 SRCH
base="ou=groups,dc=hcc,dc=nl" scope=2 deref=0
filter="(&(objectClass=posixGroup)(memberUid=nslcd))"
Feb  8 22:02:57 hcc-ldap-lb1 slapd[13588]: conn=1767 op=3 SRCH
attr=memberUid cn gidNumber member
Feb  8 22:02:57 hcc-ldap-lb1 slapd[13588]: conn=1767 op=3 SEARCH RESULT
tag=101 err=0 nentries=0 text=

Tnx
Egbert Jan
-- 
To unsubscribe send an email to
nss-pam-ldapd-users-unsubscribe@lists.arthurdejong.org or see
http://lists.arthurdejong.org/nss-pam-ldapd-users/

min-uid, Egbert

Re: min-uid, Arthur de Jong
- Re: min-uid, Egbert

Prev by Date: Re: Ineffective pam_authz_search
Next by Date: Re: min-uid
Previous by thread: Re: Ineffective pam_authz_search
Next by thread: Re: min-uid