reassign 411498 libpam-ldap thanks On Mon, Feb 19, 2007 at 02:35:26PM +0100, Leo Eraly wrote: > Package: libc6 > Version: 2.3.2.ds1-22sarge5 > > We did an update of all our machines running debian 3.1. > With the r5 revision there was also an update of libc6. > > Installing this update resulted in the following error. > > PAM unable to dlopen(/lib/security/pam_ldap.so) > PAM [dlerror: /lib/tls/libpthread.so.0: symbol errno, version > GLIBC_PRIVATE not defined in file libc.so.6 with link time reference] > PAM adding faulty module: /lib/security/pam_ldap.so > > A restart of the pure-ftpd daemon which uses this pam_ldap fixed the problem > > I think this has a high severity. THe problem is, pam and NSS modules are plugins, that the libc dlopen's. Meaning that if one of those is updated, it's very likely that the daemons using them through the libc will have issues. The libc6 works around the problem by respawning a couple of services (just what is needed to log in and a couple of widely used services), but it's not able to detect libpam-ldap upgrades (which is what triggered your problem here). I suppose libpam-ldap could respawn a couple of services, but that's far from perfect. So the sole thing here is that the admin takes care of respawning every service one by one, so that they use the new copy of the ldap pam module. Cheers, -- ·O· Pierre Habouzit ··O madcoder@debian.org OOO http://www.madism.org
Attachment:
pgpCNVoshICIg.pgp
Description: PGP signature