Public bug reported:

Binary package hint: libnss-ldap

I've setup a Ubuntu Dapper client to get account and group from an LDAP
server via ldaps:// URI (so, using SSL) but i've got strange delays.

Seems that a simple ``getent passwd'' start to `enumerate' all
certificates files and spend some time and CPU power on them.

Note that:

1) the behaviour it's the same with or without nscd running
2) the behaviour it's the same with CA_CACERTDIR or CA_CACERT in 
/etc/ldap/ldap.conf; or tls_cacertdir or tls_cacertfile in /etc/libnss-ldap.conf
3) the server are debian sarge, and i access the (two) ldap server with:
uri ldaps://ldap.sv.lnf.it/ ldaps://ldap2.sv.lnf.it/
and clearly commenting out the host statement.
4) i've removed all the certificates apart that used for my ldap server and 
speedups are visible; i've still half a dozen of certificates here, and there's 
still a little delay.
5) if i try a direct query with ldapsearch, there's no delay at all.

Please, help me. ;)

** Affects: libnss-ldap (Ubuntu)
     Importance: Undecided
         Status: Unconfirmed

-- 
Long delays enumerating users
https://launchpad.net/bugs/66741

-- 
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

Reply via email to