Just a follow up to #106. We have been running with the libgcrypt11
patch from #73 with a couple thousand openldap and AD users using
Apache2/phpsuexec on Lucid 10.04.2 64 bit for months now with no
troubles.
--
You received this bug notification because you are a member of Ubuntu
Server Team,
Re #120 (adam-stokes)
The best workable solution for me would be working official packages for
Lucid and Pangolin. Working LDAP authn/z over TLS is baseline
functionality for us (servers and academic computer labs).
I've had no problems with the patch from #73 thus far on our Lucid
servers.
I just tried Howard's patch from #73 this morning, using the
libgcrypt11_1.4.4-5ubuntu2_amd64.deb source files to roll a new
libgcrypt11 package. I can now su to root from accounts not in the
local password file database, before I could not. That was on a Lucid
10.04.2 LTS vm. Next week
Finally got a chance to revisit this after post #29 above. For that
servers config I still had a local /etc/passwd entry for the affected
account and so was not triggering the described su and sudo symptoms.
On Karmic with:
libnss-ldap 261-2.1ubuntu4
sudo 1.7.0-1ubuntu2.1
login