[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Init with user db in local LDAP (slapd): On service dependencies

Previously Thorild Selen wrote:
> Unfortunately not. /etc/rcS.d/S85nethack is run before slapd is
> started, and this init script has to be able to look up user accounts.

Why would a game need to be run that early in the boot process?

In general I think the best policy is to keep local system accounts
(anything in the 0-999 uid range) in a simple system like the files
or db nss methods.

Consider for example what happens if you run slapd as non-root and
your system happens to have create the slapd user only in the LDAP


 /wichert@wiggy.net         This space intentionally left occupied \
| wichert@deephackmode.org            http://www.liacs.nl/~wichert/ |
| 1024D/2FA3BC2D 576E 100B 518D 2F16 36B0  2805 3CB8 9250 2FA3 BC2D |

To UNSUBSCRIBE, email to debian-devel-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to: