Bug 445965 - Integrate nss-ldapd as alternative or replacement for nss-ldap?
Integrate nss-ldapd as alternative or replacement for nss-ldap?
Product: Red Hat Enterprise Linux 5
Classification: Red Hat
Component: nss_ldap (Show other bugs)
All Linux
low Severity medium
: rc
: ---
Assigned To: Nalin Dahyabhai
Depends On: 491767
  Show dependency treegraph
Reported: 2008-05-10 13:17 EDT by Petter Reinholdtsen
Modified: 2010-05-04 16:17 EDT (History)
4 users (show)

See Also:
Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Last Closed: 2010-05-04 16:17:13 EDT
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)

  None (edit)
Description Petter Reinholdtsen 2008-05-10 13:17:25 EDT
Description of problem:

The nss-ldap package have a few design issues.  One is that each process
create their own connection to the LDAP server, resulting in very many
connections on the server when there are a lot of clients, and the other
is that there is no way for each process to know if the LDAP server is
available or not, and thus the machine become very slow when the LDAP
server is unavailable.

An alternative implementation, initially a fork of nss-ldap, but now
most of the code has been rewritten, is available from
<URL: http://ch.tudelft.nl/~arthur/nss-ldapd/ >.  This version solve
the design issues with nss-ldap.

Please consider integrating nss-ldapd into RHEL.  I've tested it, and it
seem to work very well.  There are still a few minor issues left to fix
for my use, but almost all the issues I had has been fixed by the
very responsive author.

Note You need to log in before you can comment on or make changes to this bug.