OpenLDAP
Up to top level
Build   Contrib   Development   Documentation   Historical   Incoming   Software Bugs   Software Enhancements   Web  

Logged in as guest

Viewing Contrib/7481
Full headers

From: molostoff@gmail.com
Subject: nssov-pam-session ignored while db creation
Compose comment
Download message
State:
0 replies:
1 followups: 1

Major security issue: yes  no

Notes:

Notification:


Date: Fri, 21 Dec 2012 23:24:15 +0000
From: molostoff@gmail.com
To: openldap-its@OpenLDAP.org
Subject: nssov-pam-session ignored while db creation
Full_Name: Vasiliy molostov
Version: 2.4.28-1.1ubuntu4.2
OS: ubuntu 12.04.1
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (95.31.14.8)


Being placed into slapd.conf nssov-pam-session directive is ignored while db
creation that can be observed in olcOverlay=nssov,olcDatabase=hdb,cn=config -
attribute olcNssPamSession is not added and has no requested values, and as a
result loginStatus doesnt work.

Manual addition of olcNssPamSession into
olcOverlay=nssov,olcDatabase=hdb,cn=config does this thing to work - loginStatus
works fine.


Followup 1

Download message
Date: Sun, 23 Dec 2012 06:13:44 -0800
From: Howard Chu <hyc@symas.com>
To: molostoff@gmail.com, openldap-its@openldap.org
Subject: Re: (ITS#7481) nssov-pam-session ignored while db creation
molostoff@gmail.com wrote:
> Full_Name: Vasiliy molostov
> Version: 2.4.28-1.1ubuntu4.2
> OS: ubuntu 12.04.1
> URL: ftp://ftp.openldap.org/incoming/
> Submission from: (NULL) (95.31.14.8)
>
>
> Being placed into slapd.conf nssov-pam-session directive is ignored while
db
> creation that can be observed in olcOverlay=nssov,olcDatabase=hdb,cn=config
-
> attribute olcNssPamSession is not added and has no requested values, and as
a
> result loginStatus doesnt work.

Thanks for the report, fixed now in git master.

PS: the version you're reporting against is already over a year old. You would 
have needed to update anyway.
>
> Manual addition of olcNssPamSession into
> olcOverlay=nssov,olcDatabase=hdb,cn=config does this thing to work -
loginStatus
> works fine.


-- 
   -- Howard Chu
   CTO, Symas Corp.           http://www.symas.com
   Director, Highland Sun     http://highlandsun.com/hyc/
   Chief Architect, OpenLDAP  http://www.openldap.org/project/


Up to top level
Build   Contrib   Development   Documentation   Historical   Incoming   Software Bugs   Software Enhancements   Web  

Logged in as guest


The OpenLDAP Issue Tracking System uses a hacked version of JitterBug

______________
© Copyright 2013, OpenLDAP Foundation, info@OpenLDAP.org