Bob Kinney writes:
You probably have LDAP_GLOB_UID and LDAP_GLOB_GID set. Mapping them to numeric uid and gid requires a call to getpwnam() and getgrnam().I did in fact have these set, but they do not seem to make a difference.
It doesn't matter what they are. Whatever they are, authdaemon needs to convert them to numerical values via getpwname() and getgrname().
You might be able to suppress LDAP queries by putting the global username and groupname in your passwd and group file, then listing "files" in nsswitch before ldap, so that the passwd/group files are searched first, before hitting ldap.
The pids that have these connections open are for: 1. esmtpd-ssl 2. pop3d 3. pop3d-ssl 4. imapd 5. imapd-sslBut strangely enough not esmtpd...Are there analogous settings for these as well? I looked through the configuration files but was unable to see anything similar.
authlib uses the LDAP setting for all authentication requests.
pgpL9sYQb9UGx.pgp
Description: PGP signature
