User names searches are case insensitive; group membership lookups case sensitive
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
libnss-ldap (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Jaunty |
Won't Fix
|
Undecided
|
Unassigned | ||
Karmic |
Fix Released
|
Undecided
|
Unassigned | ||
Lucid |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
Binary package hint: libnss-ldap
We are using LDAP as a user database. Users log in using GDM on workstations running Ubuntu 9.04.
We've standardized on lowercase usernames. The problem is that when a user logs in using a login name that differs only in case (eg. Roel, roeL), logging in works, however the group memberships are not applied. This can be seen by running the id command:
$ id roel
uid=1004(roel) gid=513(Domain Users) groups=513(Domain Users),
$ id Roel
uid=1004(roel) gid=513(Domain Users) groups=513(Domain Users)
Note the missing General group. This causes problems with accessing shared directories that are only accessible by certain groups. We've instructed the users to use lowercase letters, but IMHO login names should always be case sensitive.
Perhaps unrelated, it seems that the bug is fixed in the libnss-ldapd fork in Karmic: http://
Ubuntu version:
Description: Ubuntu 9.04
Release: 9.04
libnss-ldap:
Installed: 261-2.1ubuntu1
Candidate: 261-2.1ubuntu1
Version table:
*** 261-2.1ubuntu1 0
500 http://
100 /var/lib/
Im going to mark this fixed for karmic, but this would be a good candidate for an sru.
Regards
chuck