Hide Forgot
Description of problem: System configured for searching and authenticating users and groups in LDAP db ignore search order for methods listed in /etc/nsswitch.conf. When nsswitch.conf specify: passwd: files ldap shadow: files ldap group: files ldap then after successful finding a item in files it should not continue searching with other methods at right of matching. But appropriate glibc routines do it - thus e.g. in case when LDAP server isn't accessible, then come up strange things. E.g. due to timeouts isn't possible log in for local users (in files db) including root login. Version-Release number of selected component (if applicable): glibc-2.13-1.i686 (I tried it with nss_ldap-265-6.fc14.i686 and pam_ldap-185-5.fc14.i686) How reproducible: Always for me. When I install nss_ldap and add three lines above to nsswitch.conf, then /usr/lib/libnss_ldap-265.so is called even for users as root and users in /etc/{passwd,shadow} - tested on login, su, passwd. Verified with strace and setting debug level in /etc/nss_ldap.conf Even entering action items as these: passwd: files [SUCCESS=return] ldap" not help, ldap library is still called.
Please provide a test case.
This package has changed ownership in the Fedora Package Database. Reassigning to the new owner of this component.
This has been sitting open waiting for Frantisek to provide a testcase for ~10 months. At this point I'm going to assume it's abandoned. Frantisek, if you can still reproduce this on F16 or the upcoming F17, please reopen this bug and work with us so that we can reproduce and ultimately fix this.