Re: [nssldap] No timeout for nss_ldap?

[Thomas Kirchtag <tkircht [at] ipodion.at>]

Just so I know what awaits me - could you give me examples of which 
services will break if I set bind_policy to soft?

Thanks

Thomas

Tony Earnshaw wrote:
> Tony Earnshaw skrev, on 02-01-2008 18:14:
>
> > > bind_policy soft
> >
> > Which, unless he alters other things, like nss_initgroups_ignoreusers 
> > will most probably bring him to a never-ending hang on his next reboot.
> >
> > Been there, seen it, done it (on production machines: The clientèle is 
> > *not* particularly forgiving until one's sassed it out).
>
> I take this back, this is rubbish, written by me; Jamin W. Collins was 
> right.
>
> However, the point is, that there are certain nss_ldap services that 
> need bind_policy hard/hard_open to work properly. Moving these to 
> "bind_policy soft" will effectively disenable them. So after a reboot 
> their config has to be changed back again to bind_policy hard/hard_open. 
> Granted that's crap, but it has to be done for those services, *unless* 
> one can isolate them and change services' startup order.
>
> --Tonni


--
=========================================================
iPodion GmbH
Rotensterngasse 20/3
A-1020 Wien, Austria
Mobil: +43-660-216 32 98
Tel.:+43-1-216 32 98-0      office [at] iPodion.at
Fax: +43-1-216 32 98-28     http://www.iPodion.at
=========================================================
Achtung: Bitte beachten Sie meine neue
                Telefonnummer: 0660/2163298