Removal of libnss-ldap? (in favor of libnss-ldapd/libnss-sss)
Arthur de Jong
adejong at debian.org
Sun Nov 6 15:12:46 GMT 2022
On Sun, 2022-11-06 at 11:37 +0100, Gioele Barabucci wrote:
> do you have any objection to the removal of libnss-ldap?
>
> libnss-ldap has been orphaned since 2013 [1] and upstream development
> has ceased in 2009 [2,3]. Its functionalities are covered by
> libnss-ldapd and libnss-sss.
>
> In the past months I filed a request for its removal [4] and now I
> would like to push that request forward to the FTP masters.
I can't think of a good reason to keep libnss-ldap around. It is
arguably a little simpler than libnss-ldapd because it doesn't require
an extra process to be running (nslcd).
So if there is no one willing to maintain it in Debian it can probably
safely be removed and users can switch to an alternative.
Note that libnss-ldapd was already recommended over libnss-ldap in the
wheezy release notes:
https://www.debian.org/releases/wheezy/amd64/release-notes/ch-information.en.html#ldap-gnutls
There are a couple of corner cases where libpam-ldap might be useful
over libpam-ldapd (and most likely the sss counterpart) in that it is
easier to configure a different LDAP back-end for different services
that use PAM.
Kind regards,
--
-- arthur - adejong at debian.org - https://people.debian.org/~adejong --
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: This is a digitally signed message part
URL: <http://alioth-lists.debian.net/pipermail/pkg-openldap-devel/attachments/20221106/2dc067c6/attachment.sig>
More information about the Pkg-openldap-devel
mailing list