On Tue, 2008-05-06 at 19:05 +0200, Bas van der Vlies wrote: > Just found out there is a 'netgroup'' command here is the info: > > # netgroup -u bas > # > no output > > nslcd: DEBUG: connection from pid=5383 uid=0 gid=0 > nslcd: DEBUG: nslcd_netgroup_byname(bas) > nslcd: DEBUG: myldap_search(base="dc=hpcv,dc=sara,dc=nl", filter="(& > (objectClass=nisNetgroup)(cn=bas))") > nslcd: DEBUG: connection from pid=5383 uid=0 gid=0 > nslcd: DEBUG: nslcd_netgroup_byname((-,bas,-)) > nslcd: DEBUG: myldap_search(base="dc=hpcv,dc=sara,dc=nl", filter="(& > (objectClass=nisNetgroup)(cn=\28-,bas,-\29))")
I guess this is a bug in nss-ldapd. It seems the getnetgrent() function is used for more than just looking up a netgroup by name (or perhaps the NSS internal function by that name is overloaded). I'll try to dig into this a little. Just to get everything clear, sorry_lisa is a name of a netgroup on your system? Also, could you send me your /etc/nsswitch.conf and indicate where the bas user is configured (LDAP, /etc/passwd, otherwise)? From a quick test I can't seem to trigger the second lookup (of "(-,bas,-)") but I'm also using unstable here (etch has a different Glibc that has some differences in the compat module). Thanks for using nss-ldapd and thanks for your bugreport. -- -- arthur - [EMAIL PROTECTED] - http://people.debian.org/~adejong --
signature.asc
Description: This is a digitally signed message part
