Bug#418615: cyrus21-imapd crashes if nsswitch is configured with, ldap group support
Henrique de Moraes Holschuh
hmh at debian.org
Fri Sep 21 13:59:40 UTC 2007
On Thu, 20 Sep 2007, Hans van Kranenburg wrote:
> I upgraded a box to Etch yesterday, and following was a complaint from a
> user that she got errors about a connection dropped by the IMAP server
> right after a ldap-user login in squirrelmail.
cyrus 2.1 cannot deal with LDAP group lookups without nscd. It is that
simple, and it is caused by:
1. lack of caching of group lookups in cyrus 2.1
2. openldap + nsswitch ldap module issues with libsasl.
3. lack of direct ldap group support in cyrus 2.1 that would avoid
(2).
It cannot be fixed in cyrus 2.1. In cyrus 2.2 you should use a ptloader
module for direct ldap lookups, but I am not sure if it would have problems
with nsswitch groups in ldap without nscd, so I am leaving this bug open.
--
"One disk to rule them all, One disk to find them. One disk to bring
them all and in the darkness grind them. In the Land of Redmond
where the shadows lie." -- The Silicon Valley Tarot
Henrique Holschuh
More information about the Pkg-Cyrus-imapd-Debian-devel
mailing list