From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: (qmail 3892 invoked by uid 1002); 19 Jun 2003 10:41:52 -0000 Mailing-List: contact gentoo-dev-help@gentoo.org; run by ezmlm Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-dev@gentoo.org Received: (qmail 11984 invoked from network); 19 Jun 2003 10:41:52 -0000 X-Injected-Via-Gmane: http://gmane.org/ To: gentoo-dev@gentoo.org From: paul Date: Thu, 19 Jun 2003 10:55:14 -0700 Message-ID: References: <871xxrb84d.fsf@nb-acer.better-com.de> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit X-Complaints-To: usenet@main.gmane.org User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.3.1) Gecko/20030425 X-Accept-Language: en-us, en In-Reply-To: <871xxrb84d.fsf@nb-acer.better-com.de> Sender: news Subject: [gentoo-dev] Re: Policy violation possible (concerns openldap/nss_ldap) X-Archives-Salt: 065b0027-8a44-428c-a559-126be2d7cf22 X-Archives-Hash: 5303543dabbdda0063c3110ce8db9e0c Martin Lesser wrote: --snipped-- > So the symlink was overwritten with the vanilla configuration what - in > our case - caused several applications which depend on ldap to not work > properly any longer. That was really bad. > > How can one prevent such an IMO unacceptable behavior of overwriting > config-files which are symlinks? Should this be seen as bug in > gentoo/emerge? > > Have the changes described above to be reported as bug in nss_ldap? > > How can we ensure the integrity of conf-files used by more than one > package when different packages use different locations for the *same* > configuration (a bad thing anyway)? > Correct me if I'm wrong here, but AFAIK /etc/openldap/ldap.conf is used by the openldap clients like ldapsearch ldapadd... whereas /etc/ldap.conf is for pam_ldap and nss_ldap from PADL. They shouldn't be the same file at all. Despite sharing some common directives such as HOST and BASE, im not sure if the pam_ldap/nss_ldap specific options are silently ignored by the openldap clienttools. If that is true, /etc/openldap/ldap.conf could be overwritten by pam_ldap/nss_ldap during install but not the other way round. kind regards Paul > Martin > > -- > gentoo-dev@gentoo.org mailing list > > -- gentoo-dev@gentoo.org mailing list