Re: gids assigned non-deterministically
On Mon, Oct 09, 2006 at 10:16:45AM -0400, Roberto C. Sanchez wrote:
> I guess that if the deployment were on a new network, it would be easier
> to affect how the gids are assigned, since you would be looking for
> issues like that. However, for an existing network, this can be more of
> a problem.
Not necessarily. There is no real need to have system GIDs assigned
through LDAP. In fact, personally I'd recommend against it.
PAM has this wonderful feature called "stacking", which means that you
can perfectly well use system GIDs from /etc/group, while your locally
assigned GIDs can come from LDAP. I know that's how I did stuff when I
transitioned my home network to LDAP.
<Lo-lan-do> Home is where you have to wash the dishes.
-- #debian-devel, Freenode, 2004-09-22