| From: | Marco Colombo <pgsql(at)esiway(dot)net> |
|---|---|
| To: | Stephane Bortzmeyer <bortzmeyer(at)nic(dot)fr> |
| Cc: | "Florian G(dot) Pflug" <fgp(at)phlo(dot)org>, pgsql-general(at)postgresql(dot)org |
| Subject: | Re: [Auth] "ident" method and LDAP user accounts |
| Date: | 2005-03-03 11:00:51 |
| Message-ID: | Pine.LNX.4.61.0503031159020.8418@Megathlon.ESI |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general |
On Thu, 3 Mar 2005, Stephane Bortzmeyer wrote:
> On Thu, Mar 03, 2005 at 10:04:32AM +0100,
> Florian G. Pflug <fgp(at)phlo(dot)org> wrote
> a message of 114 lines which said:
>
>> Might it be that the postgres user is not allowed to read
>> /etc/ldap.conf - or however your nss_ldap config file is called?
>
> myriam:~ % ls -ld /etc/*ldap*
> drwxr-xr-x 2 root root 4096 Oct 18 17:17 /etc/ldap
> -rw------- 1 root root 13 Oct 18 17:19 /etc/ldap.secret
> -rw-r--r-- 1 root root 8442 Oct 18 17:27 /etc/libnss-ldap.conf
> -rw-r--r-- 1 root root 7070 Oct 18 17:19 /etc/pam_ldap.conf
>
>> I'd try su-ing to the postgres user, and check if everything (ls -l
>> /home, ... - you get the idea) works as expected.
>
> It does:
> myriam:~ % id
> uid=104(postgres) gid=108(postgres) groups=108(postgres)
>
> myriam:~ % ls -l /home/bortzmeyer
> total 68
> drwxr-sr-x 3 bortzmeyer staff 4096 Nov 19 11:47 AFGNIC
>
> While "bortzmeyer" is not on /etc/passwd, only in LDAP.
>
> So, we still have a mystery :-(
Does Debian include and activate SELinux?
.TM.
--
____/ ____/ /
/ / / Marco Colombo
___/ ___ / / Technical Manager
/ / / ESI s.r.l.
_____/ _____/ _/ Colombo(at)ESI(dot)it
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Jake Stride | 2005-03-03 11:03:42 | Compatible Dumps |
| Previous Message | Stephane Bortzmeyer | 2005-03-03 09:41:46 | Re: [Auth] "ident" method and LDAP user accounts |