[Freeipa-devel] [PATCH] Better nss_ldap default configuration

Rob Crittenden rcritten at redhat.com
Wed Apr 2 01:44:39 UTC 2008

Simo Sorce wrote:
> Better timeout defaults, and also configuration that prevents looking up 
> root (and dirsrv) on ldap so that root logins can never timeout.
> Simo.

 From my meager understanding of nss_ldap this looks ok, just a few 
related questions:

1. Are you also going to update documentation on other operating systems 
to do something similar?
2. What if people, for reasons good or bad, actually want the root 
password to be stored in LDAP?
3. If DS fails to start will the machine be able to boot at all?

-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 3245 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20080401/f81bb6c4/attachment.bin>

More information about the Freeipa-devel mailing list