I can support this proposal. Ubuntu also uses nss-pam-ldapd for providing account information from ldap. The project is under active development and security fixes are provided very fast by upstream. (see [1])
[1] http://arthurdejong.org/nss-pam-ldapd/CVE-2013-0288 -- Chris
