Re: sshd repeated polling for non-local uidNumber?

[Date Prev][Date Next] [Thread Prev][Thread Next]

From: twb-nss-pam-ldapd-users [at] cyber.com.au
To: Dave Sclarsky <dsclarsky [at] netquestcorp.com>
Cc: nss-pam-ldapd-users [at] lists.arthurdejong.org
Subject: Re: sshd repeated polling for non-local uidNumber?
Date: Mon, 18 May 2020 13:13:28 +1000

Dave,

If you install unscd (or nscd) as Arthur suggested,
you should see about 95% reduction in queries to the LDAP server.

(u)nscd adds caching to NSS queries -- in this case, LDAP queries.

nscd is configured in /etc/nscd.conf, if you need to tweak the timeouts.
This is similar to SOA records in DNS, if you're familiar with those.

Dave Sclarsky wrote:
> So I think you hit the nail on the head - we probably have some periodic 
> processing that's triggering the name lookups.
> We'll do more investigation to see what it might be, but I guess the bottom 
> line is that it's expected behavior that we can't really change - is that 
> correct?

sshd repeated polling for non-local uidNumber?, Dave Sclarsky
- Re: sshd repeated polling for non-local uidNumber?, Arthur de Jong
- <Possible follow-ups>
- Re: sshd repeated polling for non-local uidNumber?, Dave Sclarsky
  - Re: sshd repeated polling for non-local uidNumber?, twb-nss-pam-ldapd-users

Prev by Date: Re: sshd repeated polling for non-local uidNumber?
Next by Date: nss_schema in nslcd.conf
Previous by thread: Re: sshd repeated polling for non-local uidNumber?
Next by thread: nss_schema in nslcd.conf