[CentOS] Re: pam_ldap + nscd

[Felix Schwarz]

Steve Rigler schrieb:
> It has a lot to do with user root if you use rootbinddn in
> "/etc/ldap.conf" and put the password into "/etc/ldap.secret" which
> should only be readable by root.

You are right but I even set the permissions on ldap.secret to 0644 to be sure 
that there are no acl problems. I expected that nscd would use rootbinddn if 
ldap.secret was readable for the user "nscd".

fs

PS: This was on a test machine, I won't ever make ldap.secret world readable in 
a production environment.