[pam] add nscd to pam module (might fix vmplayer issues on suse 12.3 64bit)

author: Jonathan Bauer 2013-07-02 15:26:02 +0200
committer: Jonathan Bauer 2013-07-02 15:26:02 +0200
commit: 9749de1da2398a69399b879de968fa709a70329a (patch)
tree: dfd501a80e9f711f583e0173db482aa9d9a6566c /remote/modules/pam
parent: . (diff)
download: tm-scripts-9749de1da2398a69399b879de968fa709a70329a.tar.gz
tm-scripts-9749de1da2398a69399b879de968fa709a70329a.tar.xz
tm-scripts-9749de1da2398a69399b879de968fa709a70329a.zip
5 files changed, 106 insertions, 0 deletions
diff --git a/remote/modules/pam/data/etc/nscd.conf b/remote/modules/pam/data/etc/nscd.conf
new file mode 100644
index 00000000..d0a3b107
--- /dev/null
+++ b/remote/modules/pam/data/etc/nscd.conf
@@ -0,0 +1,90 @@
+#
+# /etc/nscd.conf
+#
+# An example Name Service Cache config file.  This file is needed by nscd.
+#
+# Legal entries are:
+#
+#	logfile			<file>
+#	debug-level		<level>
+#	threads			<initial #threads to use>
+#	max-threads		<maximum #threads to use>
+#	server-user             <user to run server as instead of root>
+#		server-user is ignored if nscd is started with -S parameters
+#       stat-user               <user who is allowed to request statistics>
+#	reload-count		unlimited|<number>
+#	paranoia		<yes|no>
+#	restart-interval	<time in seconds>
+#
+#       enable-cache		<service> <yes|no>
+#	positive-time-to-live	<service> <time in seconds>
+#	negative-time-to-live   <service> <time in seconds>
+#       suggested-size		<service> <prime number>
+#	check-files		<service> <yes|no>
+#	persistent		<service> <yes|no>
+#	shared			<service> <yes|no>
+#	max-db-size		<service> <number bytes>
+#	auto-propagate		<service> <yes|no>
+#
+# Currently supported cache names (services): passwd, group, hosts, services
+#
+
+
+#	logfile			/var/log/nscd.log
+#	threads			4
+#	max-threads		32
+#	server-user		nobody
+#	stat-user		somebody
+	debug-level		0
+#	reload-count		5
+	paranoia		no
+#	restart-interval	3600
+
+	enable-cache		passwd		yes
+	positive-time-to-live	passwd		600
+	negative-time-to-live	passwd		20
+	suggested-size		passwd		211
+	check-files		passwd		yes
+	persistent		passwd		yes
+	shared			passwd		yes
+	max-db-size		passwd		33554432
+	auto-propagate		passwd		yes
+
+	enable-cache		group		yes
+	positive-time-to-live	group		3600
+	negative-time-to-live	group		60
+	suggested-size		group		211
+	check-files		group		yes
+	persistent		group		yes
+	shared			group		yes
+	max-db-size		group		33554432
+	auto-propagate		group		yes
+
+	enable-cache		hosts		yes
+	positive-time-to-live	hosts		3600
+	negative-time-to-live	hosts		20
+	suggested-size		hosts		211
+	check-files		hosts		yes
+	persistent		hosts		yes
+	shared			hosts		yes
+	max-db-size		hosts		33554432
+
+	enable-cache		services	yes
+	positive-time-to-live	services	28800
+	negative-time-to-live	services	20
+	suggested-size		services	211
+	check-files		services	yes
+	persistent		services	yes
+	shared			services	yes
+	max-db-size		services	33554432
+
+# netgroup caching is known-broken, so disable it in the default config,
+# see: https://bugs.launchpad.net/ubuntu/+source/eglibc/+bug/1068889
+	enable-cache		netgroup	no
+	positive-time-to-live	netgroup	28800
+	negative-time-to-live	netgroup	20
+	suggested-size		netgroup	211
+	check-files		netgroup	yes
+	persistent		netgroup	yes
+	shared			netgroup	yes
+	max-db-size		netgroup	33554432
diff --git a/remote/modules/pam/data/etc/systemd/system/multi-user.target.wants/nscd.service b/remote/modules/pam/data/etc/systemd/system/multi-user.target.wants/nscd.service
new file mode 120000
index 00000000..70066631
--- /dev/null
+++ b/remote/modules/pam/data/etc/systemd/system/multi-user.target.wants/nscd.service
@@ -0,0 +1 @@
+../nscd.service
+\ No newline at end of file
diff --git a/remote/modules/pam/data/etc/systemd/system/nscd.service b/remote/modules/pam/data/etc/systemd/system/nscd.service
new file mode 100644
index 00000000..262bb534
--- /dev/null
+++ b/remote/modules/pam/data/etc/systemd/system/nscd.service
@@ -0,0 +1,11 @@
+[Unit]
+Description=Name Service Cache Daemon
+
+[Service]
+ExecStart=/usr/sbin/nscd -d
+ExecStop=/usr/sbin/nscd --shutdown
+Restart=always
+
+[Install]
+WantedBy=multi-user.target
+Also=nscd.socket
diff --git a/remote/modules/pam/data/etc/tmpfiles.d/nscd.conf b/remote/modules/pam/data/etc/tmpfiles.d/nscd.conf
new file mode 100644
index 00000000..57c16660
--- /dev/null
+++ b/remote/modules/pam/data/etc/tmpfiles.d/nscd.conf
@@ -0,0 +1 @@
+D /var/run/nscd 0755 root root
diff --git a/remote/modules/pam/pam.conf b/remote/modules/pam/pam.conf
index a3399190..3adc2b98 100644
--- a/remote/modules/pam/pam.conf
+++ b/remote/modules/pam/pam.conf
@@ -9,6 +9,7 @@ REQUIRED_INSTALLED_PACKAGES="
 	ldap-utils
 	libnfsidmap2
 	nfs-common
+	nscd
 "
 REQUIRED_CONTENT_PACKAGES="
 	libpam0g
@@ -25,12 +26,14 @@ REQUIRED_CONTENT_PACKAGES="
 	ldap-utils
 	libnfsidmap2
 	nfs-common
+	nscd
 "
 REQUIRED_BINARIES="
 	rpc.gssd
 	rpc.idmapd
 	sslconnect
 	ldapsearch
+	nscd
 "
 REQUIRED_LIBRARIES="
 	nsswitch
author	Jonathan Bauer	2013-07-02 15:26:02 +0200
committer	Jonathan Bauer	2013-07-02 15:26:02 +0200
commit	9749de1da2398a69399b879de968fa709a70329a (patch)
tree	dfd501a80e9f711f583e0173db482aa9d9a6566c /remote/modules/pam
parent	. (diff)
download	tm-scripts-9749de1da2398a69399b879de968fa709a70329a.tar.gz tm-scripts-9749de1da2398a69399b879de968fa709a70329a.tar.xz tm-scripts-9749de1da2398a69399b879de968fa709a70329a.zip