[Samba] Request to update slapd.conf and OpenLDAP info for
Samba-Guide/happy.html
Gavin Henry
ghenry at suretecsystems.com
Wed Mar 2 23:10:02 GMT 2005
On Wednesday 02 Mar 2005 13:44, Tony Earnshaw wrote:
> Gavin Henry:
> > The OpenLDAP stuff on this page:
> >
> >
> > http://us4.samba.org/samba/docs/man/Samba-Guide/happy.html
> >
> >
> > is not the preferred backend, i.e. ldbm, it really, really needs to be
> > bdb.
> >
> > See:
> >
> >
> > http://www.openldap.org/faq/index.cgi?_highlightWords=bdb%20ldbm&file=108
> > 5
>
> Pointing LDAP users toward OpenLDAP.org will hopefully get them to see
> that not only ldbm as backend is considered obsolete and is deprecated,
> but also that OL 2.0 is considered obsolete, 2.1 is obsolescent and
> deprecated and the latest stable version is 2.2.23. Which uses Sleepycat
> BDB 4.2.52 mandatorily.
Agreed, but the pace at which the OpenLDAP team pump out updates etc., it will
be hard to keep any form of documentation up to date. Especially a book.
>
> [...]
>
> > I feel we are not doing the Samba community justice, if we are telling
> > them to use lbdm.
>
> ldbm as backend will ultimately seize up on production rigs, for a number
> of reasons. So will BDB 4.1, though for different reasons (I've been
> through it all myself). OpenLDAP 2.2.13 and higher with (patched) BDB
> 4.2.52 will keep on running for months without attention, even after
> forced power-downs or -outages, with all of the advantages that you cite.
> However, use of BDB 4.2.52 requires specialist configuration (DB_CONFIG)
> for it to work at all satisfactorily.
>
> Which brings me back to my own bugbear: Samba 3 people who want to use the
> ldapsam DB backend should first and foremost be LDAP specialists, only
> subsequently adapt their Samba installation to their already successful
> LDAP implementation. I don't see how the Samba people can write all this
> up in the standard docs and there is no single HOWTO on the subject.
I totally agree with this. LDAP directories are a completely specialised area.
But again, there has to be a trade off between complexity and creating a
Windows Domain for <100 with a LDAP backend.
>
> --Tonni
>
> --
> mail: tonye at billy.demon.nl
> http://www.billy.demon.nl
--
Kind Regards,
Gavin Henry.
Managing Director.
T +44 (0) 1224 279484
M +44 (0) 7930 323266
F +44 (0) 1224 742001
E ghenry at suretecsystems.com
Open Source. Open Solutions(tm).
http://www.suretecsystems.com/
More information about the samba
mailing list