initgroups() fails when using libnss-ldap (but not nscd)
Bug #509734 reported by
greenmoss
This bug report is a duplicate of:
Bug #423252: NSS using LDAP+SSL breaks setuid applications like su, sudo, apache2 suexec, and atd.
Edit
Remove
This bug affects 2 people
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
at (Ubuntu) |
Triaged
|
Medium
|
Unassigned | ||
libnss-ldap (Ubuntu) |
Triaged
|
Medium
|
Unassigned |
Bug Description
Binary package hint: at
In all of my installations of Karmic (5 so far), atd jobs refuse to run. At the requested time of execution, I instead see the following in my cron.log:
Jan 19 11:48:00 myhost atd[9054]: Cannot delete saved userids: Operation not permitted
Assuming you have the "mail" and "at" executables installed, the bug can be repeated with a simple test:
echo 'echo "testing atd" | mail -s "atd test" root' | sudo at `date -d "2 minutes" +%H:%M`
If it worked, root would receive mail. Instead, you will see the error in your logs in one to two minutes. As far as I can tell *all* at jobs are affected, rendering this package completely unusable.
summary: |
- execution fails with "Cannot delete saved userids: Operation not - permitted" + initgroups() fails when using libnss-ldap (but not nscd) |
To post a comment you must log in.
AppArmor profile? Seems clamav had a similar issue recently.
433764