Comment 98 for bug 423252
Revision history for this message
| greenmoss (ktyubuntu) wrote Re: NSS using LDAP+SSL breaks setuid applications like su and sudo | #98 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
0e1f616
(Get the code!)
My bug 509734 was marked as a duplicate of this one. This was a special case using the atd job scheduler. At jobs launched by ldap users worked, but at jobs launched by root did *not* work. atd was doing a group lookup, and nss was dropping privileges, thus breaking root-launched at jobs. To work around this, I added the following line to my /etc/ldap.conf:
nss_initgroups_
where <users> is the list of local non-ldap users, particularly root! There is a script that is part of nss-ldap that does this for you:
/usr/sbin/
Atd is finally working for me now.