[CentOS] Re: pam_ldap + nscd

Sun Oct 7 10:23:12 UTC 2007
Felix Schwarz <Felix.Schwarz at web.de>

Steve Rigler schrieb:
> It has a lot to do with user root if you use rootbinddn in
> "/etc/ldap.conf" and put the password into "/etc/ldap.secret" which
> should only be readable by root.

You are right but I even set the permissions on ldap.secret to 0644 to be sure 
that there are no acl problems. I expected that nscd would use rootbinddn if 
ldap.secret was readable for the user "nscd".


PS: This was on a test machine, I won't ever make ldap.secret world readable in 
a production environment.