Blame nis/nss

Packit 6c4009
# /etc/default/nss
Packit 6c4009
# This file can theoretically contain a bunch of customization variables
Packit 6c4009
# for Name Service Switch in the GNU C library.  For now there are only
Packit 6c4009
# four variables:
Packit 6c4009
#
Packit 6c4009
# NETID_AUTHORITATIVE
Packit 6c4009
#   If set to TRUE, the initgroups() function will accept the information
Packit 6c4009
#   from the netid.byname NIS map as authoritative.  This can speed up the
Packit 6c4009
#   function significantly if the group.byname map is large.  The content
Packit 6c4009
#   of the netid.byname map is used AS IS.  The system administrator has
Packit 6c4009
#   to make sure it is correctly generated.
Packit 6c4009
#NETID_AUTHORITATIVE=TRUE
Packit 6c4009
#
Packit 6c4009
# SERVICES_AUTHORITATIVE
Packit 6c4009
#   If set to TRUE, the getservbyname{,_r}() function will assume
Packit 6c4009
#   services.byservicename NIS map exists and is authoritative, particularly
Packit 6c4009
#   that it contains both keys with /proto and without /proto for both
Packit 6c4009
#   primary service names and service aliases.  The system administrator
Packit 6c4009
#   has to make sure it is correctly generated.
Packit 6c4009
#SERVICES_AUTHORITATIVE=TRUE
Packit 6c4009
#
Packit 6c4009
# SETENT_BATCH_READ
Packit 6c4009
#  If set to TRUE, various setXXent() functions will read the entire
Packit 6c4009
#  database at once and then hand out the requests one by one from
Packit 6c4009
#  memory with every getXXent() call.  Otherwise each getXXent() call
Packit 6c4009
#  might result into a network communication with the server to get
Packit 6c4009
#  the next entry.
Packit Service f1c2aa
SETENT_BATCH_READ=TRUE
Packit 6c4009
#
Packit 6c4009
# ADJUNCT_AS_SHADOW
Packit 6c4009
#  If set to TRUE, the passwd routines in the NIS NSS module will not
Packit 6c4009
#  use the passwd.adjunct.byname tables to fill in the password data
Packit 6c4009
#  in the passwd structure.  This is a security problem if the NIS
Packit 6c4009
#  server cannot be trusted to send the passwd.adjuct table only to
Packit 6c4009
#  privileged clients.  Instead the passwd.adjunct.byname table is
Packit 6c4009
#  used to synthesize the shadow.byname table if it does not exist.
Packit 6c4009
#ADJUNCT_AS_SHADOW=TRUE