Comment 10 for bug 253937

Revision history for this message
Steve Langasek (vorlon) wrote : Re: [Bug 253937] Re: Local login fails without LDAP server

On Wed, Aug 06, 2008 at 02:34:20PM -0000, Steve wrote:
> Wouldn't it be a lot more intelligent in libnss-ldap to do a *one-time*
> check if the LDAP server is reachable, and if not there's just no
> output. Just something simple like a ping. Only local files will be
> used.

If you are only using libnss-ldap without nscd, there is nowhere in the
model for this reachability information to be stored. If you use nscd,
results will be cached in the event the server is down.

But adjusting the timeout limits should also have an effect - were you
changing the 'timelimit' or the 'bind_timelimit' setting? In normal
circumstances, I would expect the 'bind_timelimit' to be the one that
applies for such failures; 'timelimit' only matters if your server *is*
alive but is taking a pathologically long time to reply to queries.