From owner-freebsd-ports@FreeBSD.ORG Fri Jul 18 09:12:51 2003 Return-Path: Delivered-To: freebsd-ports@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 15A6337B401 for ; Fri, 18 Jul 2003 09:12:51 -0700 (PDT) Received: from gw.celabo.org (gw.celabo.org [208.42.49.153]) by mx1.FreeBSD.org (Postfix) with ESMTP id 4EC9743FA3 for ; Fri, 18 Jul 2003 09:12:50 -0700 (PDT) (envelope-from nectar@celabo.org) Received: from madman.celabo.org (madman.celabo.org [10.0.1.111]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client CN "madman.celabo.org", Issuer "celabo.org CA" (verified OK)) by gw.celabo.org (Postfix) with ESMTP id C76B05486E; Fri, 18 Jul 2003 11:12:40 -0500 (CDT) Received: by madman.celabo.org (Postfix, from userid 1001) id 64B756D45E; Fri, 18 Jul 2003 11:12:40 -0500 (CDT) Date: Fri, 18 Jul 2003 11:12:40 -0500 From: "Jacques A. Vidrine" To: Jean-Baptiste Quenot Message-ID: <20030718161240.GA68334@madman.celabo.org> References: <20030710110751.GA6966@watt.intra.caraldi.com> <3F0D68D7.50502@fillmore-labs.com> <20030715214112.GF86657@madman.celabo.org> <20030718160450.GA52232@watt.intra.caraldi.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20030718160450.GA52232@watt.intra.caraldi.com> X-Url: http://www.celabo.org/ User-Agent: Mutt/1.5.4i-ja.1 cc: ports@freebsd.org cc: Oliver Eikemeier Subject: Re: Patch port nss_ldap's Makefile for ldap.conf location X-BeenThere: freebsd-ports@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Porting software to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 18 Jul 2003 16:12:51 -0000 On Fri, Jul 18, 2003 at 06:04:50PM +0200, Jean-Baptiste Quenot wrote: > If I understand correctly your point, each LDAP client should have its > own config file? s/should/could/ > OpenLDAP client in > $(LOCALBASE)/etc/openldap/ldap.conf, pam_ldap in > $(LOCALBASE)/etc/pam_ldap.conf and nss_ldap in > $(LOCALBASE)/etc/nss_ldap.conf? > > That makes three files or more in the future to keep in sync when > changing the server URI... I'd prefer only one file, the one from > OpenLDAP. Does it make sense to have a different LDAP server for every > client program? Yes, it does. That's why you'll find most LDAP-using applications have a `LDAP server' configuration knob (among other LDAP knobs). If you want one file, you can symlink/hard link them. But if we don't use different names, there would be no way to separate the system nss_ldap configuration from, say, the default configuration of the OpenLDAP command line tools. > It _could_ make sense to have separate config files if we consider eg > binding anon or root depending on the client program involved, or > setting a specific option. Right. Cheers, -- Jacques Vidrine . NTT/Verio SME . FreeBSD UNIX . Heimdal nectar@celabo.org . jvidrine@verio.net . nectar@freebsd.org . nectar@kth.se