Re: how to remove example.com

[Andrew Findlay <andrew.findlay@skills-1st.co.uk>]

On Sun, May 19, 2002 at 12:17:18PM +0400, Sarath Chandra M wrote:

> 	I am using openldap on a small linux box. Its working fine for
> client authentication.
> When I tried debug mode, the log keeps giving these lines frequently :

> May 19 11:50:00 remote2 slapd[7911]: daemon: conn=12 fd=10 connection
> from IP=127.0.0.1:2037 (IP=0.0.0.0:34049) accepted.
> May 19 11:50:00 remote2 slapd[7915]: conn=12 op=0 BIND dn="" method=128
> May 19 11:50:00 remote2 slapd[7915]: conn=12 op=0 RESULT tag=97 err=0
> text=
> May 19 11:50:00 remote2 slapd[7915]: conn=12 op=1 SRCH
> base="dc=example,dc=com"
> scope=2 filter="(uid=root)"

> Where is this dc=example,dc=com. I searched all the config files and
> other related files.
> But couldn't find it. Is the above output (behavior) normal ? Or is
> there any problem ?

This looks like nss_ldap or pam_ldap activity to me. The connections come
from 127.0.0.1 (localhost) so it is your own machine making the queries.
You should look at client-side config files to find this, rather than
server config.

You probably have "dc=example,dc=com" listed in /etc/ldap.conf or
similar  - the exact location depends on which Linux distribution you
are using. Every time something needs to look up a passwd entry you
will see a query like this.

Andrew
-- 
-----------------------------------------------------------------------
|                 From Andrew Findlay, Skills 1st Ltd                 |
| Consultant in large-scale systems, networks, and directory services |
|        Andrew.Findlay@skills-1st.co.uk       +44 1628 782565        |
-----------------------------------------------------------------------