> My libnss-ldap.conf isn't world readable, to protect my LDAP password. Does 'finger user' work under non-root with such configuration?