-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
One question you should consider is: why do you need this information?
[...]I agree with your point in general and think there are better ways to do access control.
nss-ldapd is an NSS module that does lookups in an LDAP database. The NSS module does not do the lookup itself (this causes a lot of headaches) but offloads it to a deamon (nslcd). Most NSS calls should be no problem but shadow calls pose an exception to that. The server (nslcd) will only return shadow information if it can determine that the caller runs as root.
So I would like to keep one socket for all requests and not mess with permissions of sockets.
- -- - -- arthur - adejong@debian.org - http://people.debian.org/~adejong --
-----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFIWOFdVYan35+NCKcRAiENAKCSR2Uz8FL/MEu7nwYWM5Rjx5gQOwCeMyv3 S9uSuXFiixTL3EhEM2mIEkM= =D17I -----END PGP SIGNATURE-----