[Bug 1081] AIX port does not support group allow/ deny via nss_ldap

bugzilla-daemon at mindrot.org bugzilla-daemon at mindrot.org
Thu Sep 8 07:42:11 EST 2005


http://bugzilla.mindrot.org/show_bug.cgi?id=1081

           Summary: AIX port does not support group allow/ deny via nss_ldap
           Product: Portable OpenSSH
           Version: 3.9p1
          Platform: PPC
        OS/Version: AIX
            Status: NEW
          Severity: normal
          Priority: P2
         Component: sshd
        AssignedTo: bitbucket at mindrot.org
        ReportedBy: paul.moore at centrify.com


if the platform does not support getgrouplist directly then sshd uses getgrent 
to enumerate group membership (for group allow / deny). The AIX version of this 
API only supports /etc/group and NIS and so the group features do not work with 
other naming providers (nss_ldap say).

The AIX port should use getuserattr(user, S_GROUPS, ..), this uses NSS.

We can provide a candidate fix for this if needed.



------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.




More information about the openssh-bugs mailing list