[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: ldap problem

>>
>>>>There's definately some duplicates (tty, nobody, etc).  But I'm not
>>>>sure what will happen if I take those out, the ldap server being in
>>>>production and all..
>>>
>>>Is this wise?  I ask, because I honestly don't know.  I would assume that this
>>>is a bad idea.  I would think there should be no possible dupblicate user
>>>mappings.  Something is bound to get confused.  In general I also think that
>>>there is probably no reason whatsoever to share system user account information
>>>anyway.  Each machine should handle system accounts locally.  System group
>>>information seems a bit trickier, though, since system group membership
>>>information would not be shared.

We recently got into trouble because we had two "nobody" users which had
different primary groups, this broke mailman.

The second nobody was added by smbldap-tools.

So I guess having duplicate, unconsistent users is a bad idea, altough
having identical users shouldn't be a problem, if you keep them updated.
Reply to: