Public bug reported:
Binary package hint: libnss-ldap
I've setup a Ubuntu Dapper client to get account and group from an LDAP
server via ldaps:// URI (so, using SSL) but i've got strange delays.
Seems that a simple ``getent passwd'' start to `enumerate' all
certificates files and spend some time and CPU power on them.
Note that:
1) the behaviour it's the same with or without nscd running
2) the behaviour it's the same with CA_CACERTDIR or CA_CACERT in
/etc/ldap/ldap.conf; or tls_cacertdir or tls_cacertfile in /etc/libnss-ldap.conf
3) the server are debian sarge, and i access the (two) ldap server with:
uri ldaps://ldap.sv.lnf.it/ ldaps://ldap2.sv.lnf.it/
and clearly commenting out the host statement.
4) i've removed all the certificates apart that used for my ldap server and
speedups are visible; i've still half a dozen of certificates here, and there's
still a little delay.
5) if i try a direct query with ldapsearch, there's no delay at all.
Please, help me. ;)
** Affects: libnss-ldap (Ubuntu)
Importance: Undecided
Status: Unconfirmed
--
Long delays enumerating users
https://launchpad.net/bugs/66741
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs