From owner-freebsd-stable@FreeBSD.ORG  Sat Mar  4 19:29:48 2006
Return-Path: <owner-freebsd-stable@FreeBSD.ORG>
X-Original-To: freebsd-stable@freebsd.org
Delivered-To: freebsd-stable@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 7D98716A420
	for <freebsd-stable@freebsd.org>; Sat,  4 Mar 2006 19:29:48 +0000 (GMT)
	(envelope-from dmagda@ee.ryerson.ca)
Received: from tomts13-srv.bellnexxia.net (tomts13-srv.bellnexxia.net
	[209.226.175.34])
	by mx1.FreeBSD.org (Postfix) with ESMTP id D876C43D45
	for <freebsd-stable@freebsd.org>; Sat,  4 Mar 2006 19:29:45 +0000 (GMT)
	(envelope-from dmagda@ee.ryerson.ca)
Received: from [192.168.1.133] ([65.95.111.73]) by tomts13-srv.bellnexxia.net
	(InterMail vM.5.01.06.13 201-253-122-130-113-20050324) with ESMTP id
	<20060304192944.ZVNY29052.tomts13-srv.bellnexxia.net@[192.168.1.133]>;
	Sat, 4 Mar 2006 14:29:44 -0500
In-Reply-To: <6F9C5982-E3FB-4EC2-9890-D685F2ABCC34@nordahl.net>
References: <20060226081431.GA813@dimma.mow.oilspace.com>
	<6F9C5982-E3FB-4EC2-9890-D685F2ABCC34@nordahl.net>
Mime-Version: 1.0 (Apple Message framework v746.2)
Content-Type: text/plain; charset=US-ASCII; delsp=yes; format=flowed
Message-Id: <845C4D29-2B82-47D5-B6AD-5BC118BDAF34@ee.ryerson.ca>
Content-Transfer-Encoding: 7bit
From: David Magda <dmagda@ee.ryerson.ca>
Date: Sat, 4 Mar 2006 14:29:44 -0500
To: Frode Nordahl <frode@nordahl.net>
X-Mailer: Apple Mail (2.746.2)
Cc: freebsd-stable@freebsd.org, Dmitriy Kirhlarov <dimma@higis.ru>
Subject: Re: nss_ldap problem
X-BeenThere: freebsd-stable@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: David Magda <dmagda@ee.ryerson.ca>
List-Id: Production branch of FreeBSD source code <freebsd-stable.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-stable>, 
	<mailto:freebsd-stable-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-stable>
List-Post: <mailto:freebsd-stable@freebsd.org>
List-Help: <mailto:freebsd-stable-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-stable>,
	<mailto:freebsd-stable-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 04 Mar 2006 19:29:48 -0000


On Mar 4, 2006, at 04:04, Frode Nordahl wrote:

>> /etc/nsswitch.conf
>> group: ldap files
>> hosts: files dns
>> networks: files
>> passwd: ldap files
>> shells: files
>> imap: ldap
>
> Why do you have "ldap" first? I would use "files ldap" in any case  
> so local changes can override the directory.

And if there's an issue with the network, things will slow down to a  
crawl when the system is waiting for the LDAP server to respond  
(which it won't, so you're waiting for the time out to occur).

Another scenario is when you boot up in single user mode: if you do  
an 'ls -l' the UIDs need to be looked up to display the usernames by  
default, so the passwd look up is performed, and since the network  
hasn't been brought up you're waiting for the timeout.