Date: Sat, 9 Jun 2001 15:40:03 -0700 (PDT) From: Peter Wemm <peter@wemm.org> To: freebsd-bugs@FreeBSD.org Subject: Re: bin/27994: Really functioning nsswitch in FreeBSD Message-ID: <200106092240.f59Me3E46943@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
The following reply was made to PR bin/27994; it has been noted by GNATS. From: Peter Wemm <peter@wemm.org> To: gyori@szit.bme.hu Cc: FreeBSD-gnats-submit@FreeBSD.ORG Subject: Re: bin/27994: Really functioning nsswitch in FreeBSD Date: Sat, 09 Jun 2001 15:35:23 -0700 gyori@szit.bme.hu wrote: > >Description: > > FreeBSD 4.x has no support to nsswitch, and even the -CURRENT > supports only very few, predefined methods such as files, nis, nisplus for > user authentication in nsswitch.conf. Dynamical modules can't be used, for > example nss_ldap for authentication via LDAP. There are patches to solve > this problem at http://www.nectar.com/freebsd/nsswitch, but only a part of > them was built in to -CURRENT (the statical part). Why?? This is a serious > deficiency of FreeBSD which has been solved on Linux for ages. Is there any > security or other reason not to implement a fully functional nsswitch > feature on FreeBSD? The basic problem is that it requires *everything* to be dynamically linked, even the root filesystem (/bin, /sbin etc) and splitting the libraries between /lib and /usr/lib. Various people do not want this. There are other possibilities, such as using proxy nsswitch servers or something, but that will likely look quite different to normal nsswitch. Cheers, -Peter -- Peter Wemm - peter@FreeBSD.org; peter@yahoo-inc.com; peter@netplex.com.au "All of this is for nothing if we don't go to the stars" - JMS/B5 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-bugs" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200106092240.f59Me3E46943>