I almost got bitten by this too while migrating my sudo-ldap config from lenny to squeeze.
On Thu, Jan 20, 2011 at 09:46:31AM -0700, Bdale Garbee wrote: > The nsswitch.conf file is apparently provided by the base-files package, > and the sudo package has never done anything explicit to this file. So > while adding a line to it might be the right solution (I really > don't know, as I don't use LDAP myself and have at best a poor > understanding of the interactions involved), that might best be handled > in the base-files package and not in sudo-ldap. > > Do you know what version you were using before? Lenny has sudo-ldap 1.6.9p17-3, but only versions higher than 1.7.0 do read nsswitch.conf (according to squeeze's /usr/share/doc/sudo-ldap/UPGRADE.gz). Unconditionally adding a line to nsswitch.conf via the base-files package will work, because the non-LDAP sudo does not read it in any case. However, I think it causes quite some confusion for unsuspecting system adminstrators not familiar with this issue. Ulrich -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
