From owner-freebsd-hackers Tue Mar 14 18:59:41 2000 Delivered-To: freebsd-hackers@freebsd.org Received: from outgoing.redshift.com (outgoing.redshift.com [216.228.2.99]) by hub.freebsd.org (Postfix) with ESMTP id 5085937B83B for ; Tue, 14 Mar 2000 18:59:38 -0800 (PST) (envelope-from yramin@redshift.com) Received: from RedShift.com (mail.redshift.com [216.228.2.86]) by outgoing.redshift.com (8.9.3/) with ESMTP id SAA02550; Tue, 14 Mar 2000 18:59:33 -0800 Received: from atp.atpn.com (pm7-105.sj.redshift.com [216.200.49.105]) by RedShift.com (8.9.3/) with SMTP id SAA28221; Tue, 14 Mar 2000 18:59:29 -0800 From: Yann Ramin To: Oscar Bonilla Subject: Re: LDAP NIS replacement Date: Tue, 14 Mar 2000 18:51:44 -0800 X-Mailer: KMail [version 1.0.28] Content-Type: text/plain References: <200003150023.QAA09607@www.redshift.com> <20000314183906.A86436@fisicc-ufm.edu> In-Reply-To: <20000314183906.A86436@fisicc-ufm.edu> Cc: freebsd-hackers@freebsd.org MIME-Version: 1.0 Message-Id: <00031418592000.21024@atp.atpn.com> Content-Transfer-Encoding: quoted-printable Sender: owner-freebsd-hackers@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Perfect ! Please let me know when you get NSS working in the C library, as I am very interested. I tried compiling the copy of nss_ldap from padl.com - in both GNU_NSS mo= de and IRS_NSS mode. Both crapped out in various places and it seemed such a bi= g chore to try to clean them up, so I stopped. I'm going to get ADP (some 486 in the corner) to 4.0-CURRENT sources, and= use that as a reference platform for pam. I'm rebuilding pam_ldap from scrat= ch, as the sources from padl once again passed through too many hands - I thi= nk it needs a fresh start. About the e-mail, sorry about that. I was typing away in my ISPs dated w= ebmail system. NPS (Naval Postgrad School, I work there over school breaks) rec= ently installed a new firewall, which blocks port 25, so I'm pretty stuck (thei= r mailserver doesn't do realying :(). Yann On Tue, 14 Mar 2000, you wrote: > On Tue, Mar 14, 2000 at 04:23:32PM -0800, yramin wrote: > > Hi, > >=20 > > New to the list, but I'm looking into developing a way to > > authenticate and grab user information from an LDAP server compared > > to /etc/passwd and company, or NIS. I was poking around the library > > code and noticed that FreeBSD does not have NSS (name service > > switch) support (otherwise I would use nss_ldap already out there - > > it doesn't compile under FreeBSD even with IRS use enabled, I've > > tried ). What would be the best way to write new getpwent(), > > etc. routines for FreeBSD? I could stick them into a library and > > have programs that want to use them link to it, but that is a pain > > (although quite portable :)). > > I'm working on a PAM system first (yes, pam_ldap is out there, but > > it sucks, lots of linuxisms), but would be interested getting some > > work done on this as well. Any thoughts, advice, pointers? >=20 > PLEASE use the enter key about every 80 characters... your email > looks horrible ;) >=20 > I'm working precisely on this. I've integrated the NSS functionality > from NetBSD into the standard C library of FreeBSD. I'm in the > process of rewriting the get* function to use the dispatcher. >=20 > Once we have that, the way to go would be to have the C library=20 > dlopen the required modules as PAM does. >=20 > Are you sure that nss_ldap doesn't compile on freebsd? I think I > compiled it once (and of course it was unusable since FreeBSD > lacks NSS). >=20 > regards, >=20 > -oscar >=20 > --=20 > pgp public key: finger obonilla@fisicc-ufm.edu > pgp fingerprint: 6D 18 8C 90 4C DF F0 4B DF 35 1F 69 A1 33 C7 BC >=20 >=20 > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-hackers" in the body of the message --=20 -------------------------------------------------------------------- Yann Ramin=09=09=09atrus@atrustrivalie.eu.org Atrus Trivalie Productions=09www.atrustrivalie.eu.org =09=09=09=09irm.it.montereyhigh.com Monterey High IT=09=09www.montereyhigh.com ICQ =09=09=09=0946805627 AIM=09=09=09=09oddatrus Marina, CA=09 "All cats die. Socrates is dead. Therefore Socrates is a cat." =09- The Logician =09 =09# fortune "To be responsive at this time, though I will simply say, and therefore this is a repeat of what I said previously, that which I am unable to offer in response is based on information available to make no such statement." -------------------------------------------------------------------- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message