Bug#566297: getpwuid -- perl 5.10

To: Dave Serls <dave@dashs.denver.co.us>, 566297@bugs.debian.org
Subject: Bug#566297: getpwuid -- perl 5.10
From: Aurelien Jarno <aurelien@aurel32.net>
Date: Mon, 25 Jan 2010 18:23:03 +0100
Message-id: <[🔎] 4B5DD377.2020800@aurel32.net>
Reply-to: Aurelien Jarno <aurelien@aurel32.net>, 566297@bugs.debian.org
In-reply-to: <[🔎] 20100123122259.51c447a7@harpo.dashs.denver.co.us>
References: <[🔎] 20100123122259.51c447a7@harpo.dashs.denver.co.us>

Dave Serls a écrit :
> Generates many messages of the form:
> ypserv[1349]: refused connect from 192.168.1.1:35691 to procedure
> ypproc_match
> (dashs.denver.co.us,passwd.adjunct.byname;-1)

I guess it is on the server right? This mesages is there, as it refuses
to serve a passwd.adjunct.byname to a non-priviledged user (coming from
a port >= 1024).

> which appear to be provoked by some NSS call from 'wget'.
> This was never the case with previous libnss_nis.so
>
> I've narrowed down the source of the NIS ypmatch call to a
> invocation of the getpwuid() primitive in perl 5.10.0.
> 

That's strange, because with the patch to fix the NIS shadow leak,
passwd.adjunct.byname calls have been removed for normal calls, and are
now only done when querying shadow entries.

Have you tried to reproduce the bug by running a simple C code calling
getpwuid()?

Also, can you please share the contents of your /etc/nsswitch.conf?

-- 
Aurelien Jarno                          GPG: 1024D/F1BCDB73
aurelien@aurel32.net                 http://www.aurel32.net

Reply to:

References:
- Bug#566297: getpwuid -- perl 5.10
  - From: Dave Serls <dave@dashs.denver.co.us>

Prev by Date: r4104 - glibc-package/branches/eglibc-2.11/debian
Next by Date: Processed: your mail
Previous by thread: Bug#566297: getpwuid -- perl 5.10
Next by thread: Bug#566297: getpwuid -- perl 5.10
Index(es):
- Date
- Thread