From owner-freebsd-bugs  Sat Jun  9 15:40:14 2001
Delivered-To: freebsd-bugs@hub.freebsd.org
Received: from freefall.freebsd.org (freefall.freebsd.org [216.136.204.21])
	by hub.freebsd.org (Postfix) with ESMTP id 2FDF437B401
	for <freebsd-bugs@hub.freebsd.org>; Sat,  9 Jun 2001 15:40:03 -0700 (PDT)
	(envelope-from gnats@FreeBSD.org)
Received: (from gnats@localhost)
	by freefall.freebsd.org (8.11.3/8.11.3) id f59Me3E46943;
	Sat, 9 Jun 2001 15:40:03 -0700 (PDT)
	(envelope-from gnats)
Date: Sat, 9 Jun 2001 15:40:03 -0700 (PDT)
Message-Id: <200106092240.f59Me3E46943@freefall.freebsd.org>
To: freebsd-bugs@FreeBSD.org
Cc: 
From: Peter Wemm <peter@wemm.org>
Subject: Re: bin/27994: Really functioning nsswitch in FreeBSD 
Reply-To: Peter Wemm <peter@wemm.org>
Sender: owner-freebsd-bugs@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-bugs.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo?subject=subscribe%20freebsd-bugs>
List-Unsubscribe: <mailto:majordomo?subject=unsubscribe%20freebsd-bugs>
X-Loop: FreeBSD.org

The following reply was made to PR bin/27994; it has been noted by GNATS.

From: Peter Wemm <peter@wemm.org>
To: gyori@szit.bme.hu
Cc: FreeBSD-gnats-submit@FreeBSD.ORG
Subject: Re: bin/27994: Really functioning nsswitch in FreeBSD 
Date: Sat, 09 Jun 2001 15:35:23 -0700

 gyori@szit.bme.hu wrote:
 
 > >Description:
 > 
 > 	FreeBSD 4.x has no support to nsswitch, and even the -CURRENT
 > supports only very few, predefined methods such as files, nis, nisplus for
 > user authentication in nsswitch.conf. Dynamical modules can't be used, for
 > example nss_ldap for authentication via LDAP. There are patches to solve
 > this problem at http://www.nectar.com/freebsd/nsswitch, but only a part of
 > them was built in to -CURRENT (the statical part). Why?? This is a serious
 > deficiency of FreeBSD which has been solved on Linux for ages. Is there any
 > security or other reason not to implement a fully functional nsswitch
 > feature on FreeBSD?
 
 The basic problem is that it requires *everything* to be dynamically
 linked, even the root filesystem (/bin, /sbin etc) and splitting the
 libraries between /lib and /usr/lib.  Various people do not want this.
 
 There are other possibilities, such as using proxy nsswitch servers or
 something, but that will likely look quite different to normal nsswitch.
 
 Cheers,
 -Peter
 --
 Peter Wemm - peter@FreeBSD.org; peter@yahoo-inc.com; peter@netplex.com.au
 "All of this is for nothing if we don't go to the stars" - JMS/B5
 

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-bugs" in the body of the message