groups issue with openssh (all versions since at least 3.8), AIX 5.3 and NIS
Darren Tucker
dtucker at zip.com.au
Tue Mar 14 14:11:41 EST 2006
On Mon, Mar 13, 2006 at 07:47:37PM -0600, Gael Martinez wrote:
[...]
> that in average a ssh connection is generating over 12000 nis sessions,
> scanning basically all the group.byname table a few times and we got a
> few thousands groups... :(
[...]
> Let me know, I will assist as much as possible, this is really a big
> issue for us, and I'm not able to determine if that issue
> can be resolved with a patch to openssh or at the OS level.
Looking briefly at the URL and the code, it looks like it could be
resolved by implementing an AIX-specific getgroupslist() based on
getgrset(). I'll look at at it if you can test patches.
--
Darren Tucker (dtucker at zip.com.au)
GPG key 8FF4FA69 / D9A3 86E9 7EEE AF4B B2D4 37C9 C982 80C7 8FF4 FA69
Good judgement comes with experience. Unfortunately, the experience
usually comes from bad judgement.
More information about the openssh-unix-dev
mailing list