registry team mailing list archive

Thread
Date

[Bug 585966] Re: nslcd doesn't failover to backup server on authentication (bind)

To: registry@xxxxxxxxxxxxxxxxxxx
From: Yannis Aribaud <bugs@xxxxxxxxxx>
Date: Thu, 27 May 2010 09:24:29 -0000
Reply-to: Bug 585966 <585966@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

** Description changed:

  This is a known bug from Debian : http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=577593
  It seems that this bug has been fixed in the next release of libpam-ldapd.
  
  This bug appears on Ubuntu Lucid 10.04 with libpam-ldapd 0.7.2.
  
  If two ldap URI are provided in the /etc/nslcd.conf and that the first
  one is unavailable then nss lookups just failover the second URI but for
  any authentication nslcd tries to bind on the first URI fail and just
  stop there instead of trying the second URI.
  
  So even with two well configured LDAP servers there is no authentication
  redundancy.
  
  This is not really a security vulnerability but it could be considered as.
- It seems to me really important to fix this bug even more for an LTS Ubuntu version used quite a lot servers.
+ It seems to me really important to fix this bug even more for an LTS Ubuntu version used by quite a lot of servers.

-- 
nslcd doesn't failover to backup server on authentication (bind)
https://bugs.launchpad.net/bugs/585966
You received this bug notification because you are a member of Registry
Administrators, which is the registrant for Debian.