From owner-freebsd-fs@freebsd.org Tue Jun 28 13:05:08 2016 Return-Path: Delivered-To: freebsd-fs@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id B869FB85020; Tue, 28 Jun 2016 13:05:08 +0000 (UTC) (envelope-from julian@freebsd.org) Received: from vps1.elischer.org (vps1.elischer.org [204.109.63.16]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "vps1.elischer.org", Issuer "CA Cert Signing Authority" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 8A5362D4E; Tue, 28 Jun 2016 13:05:08 +0000 (UTC) (envelope-from julian@freebsd.org) Received: from Julian-MBP3.local (ppp121-45-236-103.lns20.per1.internode.on.net [121.45.236.103]) (authenticated bits=0) by vps1.elischer.org (8.15.2/8.15.2) with ESMTPSA id u5SD4pkp024895 (version=TLSv1.2 cipher=DHE-RSA-AES128-SHA bits=128 verify=NO); Tue, 28 Jun 2016 06:04:54 -0700 (PDT) (envelope-from julian@freebsd.org) Subject: Re: The small installations network filesystem and users. To: =?UTF-8?Q?Gerrit_K=c3=bchn?= , Daniel Eischen References: <9BB7E8B3-EC0E-457E-B2B2-FB80B1CF02B0@gmail.com> <20160621075631.38c2eeaa7c224aa22ea9be4d@aei.mpg.de> Cc: freebsd-fs , FreeBSD Hackers From: Julian Elischer Message-ID: <761f82d3-ebe9-2cba-9499-049dafbc98df@freebsd.org> Date: Tue, 28 Jun 2016 21:04:45 +0800 User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.11; rv:45.0) Gecko/20100101 Thunderbird/45.1.1 MIME-Version: 1.0 In-Reply-To: <20160621075631.38c2eeaa7c224aa22ea9be4d@aei.mpg.de> Content-Type: text/plain; charset=windows-1252; format=flowed Content-Transfer-Encoding: 8bit X-BeenThere: freebsd-fs@freebsd.org X-Mailman-Version: 2.1.22 Precedence: list List-Id: Filesystems List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 28 Jun 2016 13:05:08 -0000 On 21/06/2016 1:56 PM, Gerrit Kühn wrote: > On Mon, 20 Jun 2016 22:00:31 -0400 (EDT) Daniel Eischen > wrote about Re: The small installations network > filesystem and users.: > > DE> We should support LDAP client out of the box, in base. What > DE> sucks now is that we need 3 packages (plus their dependencies) > DE> and multiple config files for ldap: > DE> > DE> pam_ldap > DE> nss_ldap > DE> openldap-client > > I only have to install/config ldap-clients every now and then, but I would > also strongly favour a more "integrated" setup (if that requires having it > in base is a different question, though). A few weeks ago I used > nss-pam-ldapd instead of pam_ldap and nss_ldap for the first time, and it > appeared to work with a bit less of a hassle for me (otoh, I don't do any > funky things here, I just need a replacement for what we did with NIS > something like 20 years ago). +1 I just had to reinstall certs for my server. which means copying certs to several places (in a default config) sendmail and syrus ad openssl (base) all look in different places. you COULD make them all look in the same place but that requires undersanding what is going on and not just cribbing the config file off the net somewhere. I think ports and pkg are fine, but we need to have some more thought put into how they all go together. > > > cu > Gerrit > _______________________________________________ > freebsd-fs@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-fs > To unsubscribe, send any mail to "freebsd-fs-unsubscribe@freebsd.org" >