From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from lists.gentoo.org ([140.105.134.102] helo=robin.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1Ik91W-0007uX-BB for garchives@archives.gentoo.org; Tue, 23 Oct 2007 01:57:38 +0000 Received: from robin.gentoo.org (localhost [127.0.0.1]) by robin.gentoo.org (8.14.1/8.14.0) with SMTP id l9N1uL51006749; Tue, 23 Oct 2007 01:56:21 GMT Received: from moutng.kundenserver.de (moutng.kundenserver.de [212.227.126.177]) by robin.gentoo.org (8.14.1/8.14.0) with ESMTP id l9N1q8Nm001919 for ; Tue, 23 Oct 2007 01:52:08 GMT Received: from bs.l (e180058089.adsl.alicedsl.de [85.180.58.89]) by mrelayeu.kundenserver.de (node=mrelayeu5) with ESMTP (Nemesis) id 0ML25U-1Ik8wB45Of-00040S; Tue, 23 Oct 2007 03:52:08 +0200 Received: from [192.168.1.22] (helo=bart.bs.l) by homer.bs.l with esmtp (Exim 4.67) (envelope-from ) id 1Ik8w8-0004Kq-Rk for gentoo-user@lists.gentoo.org; Tue, 23 Oct 2007 03:52:04 +0200 Received: from bsch by bart.bs.l with local (Exim 4.67) (envelope-from ) id 1Ik8w9-00043X-2C for gentoo-user@lists.gentoo.org; Tue, 23 Oct 2007 03:52:05 +0200 Date: Tue, 23 Oct 2007 03:52:03 +0200 From: Bertram Scharpf To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] LDAP: Slapd fails asking itself while startup [solved] Message-ID: <20071023015203.GA15338@bart.bs.l> Mail-Followup-To: gentoo-user@lists.gentoo.org References: <20071019190959.GA21030@bart.bs.l> <20071022042056.GA24002@bart.bs.l> Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20071022042056.GA24002@bart.bs.l> User-Agent: Mutt/1.5.16 (2007-06-09) X-Provags-ID: V01U2FsdGVkX1/OySEiB+GmB5Zy9xG9hiVXrNNA6CA0GjpvB9H KHgHtkJqi4EawNj37nBnxMx01ghuE60CFIVUP8he7m3KNKA0qU nyS4piGxO5T3f9xQf3hN+cQ7xqVKSuGncx9a5+/2x0= X-Archives-Salt: 126f3119-b49b-4516-b846-dd3cb97f1918 X-Archives-Hash: ae619410fd619268279a3851eccba834 Am Montag, 22. Okt 2007, 06:20:56 +0200 schrieb Bertram Scharpf: > Hi, > > Am Freitag, 19. Okt 2007, 21:09:59 +0200 schrieb Bertram Scharpf: > > @(#) $OpenLDAP: slapd 2.3.38 (Oct 18 2007 22:12:26) $ root@myhost:/var/tmp/portage/net-nds/openldap-2.3.38/work/openldap-2.3.38/servers/slapd > > nss_ldap: failed to bind to LDAP server ldap://127.0.0.1: Can't contact LDAP server > > nss_ldap: failed to bind to LDAP server ldap://127.0.0.1/: Can't contact LDAP server > > nss_ldap: failed to bind to LDAP server ldapi://%2fvar%2frun%2fldapi_sock/: Can't contact LDAP server > > ... > > nss_ldap: could not search LDAP server - Server is unavailable > > > > I found out that the Gentoo init script activates the > > options "-u ldap -g ldap". > > I detected I have a machine where this didn't happen. Then I > upgraded from glibc-2.5-r4 to glibc-2.6.1 ... > > Could this be a real bug in glibc? Does anybody experience > the same behaviour? The developer list gave me the answer. Glibc checks for group memberships of user ldap. A possible (temporary) solution is to say in /etc/ldap.conf: nss_initgroups_ignoreusers root,ldap Bertram -- Bertram Scharpf Stuttgart, Deutschland/Germany http://www.bertram-scharpf.de -- gentoo-user@gentoo.org mailing list