Re: nss_ldap / top startup

From: Gavin Atkinson (gavin.atkinson_at_ury.york.ac.uk)
Date: 04/27/05

  • Next message: Marc Santhoff: "Re: [4.11] sysctl reports garbage" 
    To: Oliver Brandmueller <ob@e-Gitt.NET>
Date: Wed, 27 Apr 2005 19:13:52 +0100

    On Mon, 2005-04-25 at 12:59 +0200, Oliver Brandmueller wrote:
    > Hi,
    >
    > I have some servers running running on 5.4-STABLE as of Apr 5th. I use
    > nss_ldap for a userbase of currently about 24000 accounts (will be
    > growing to approx 60000 in the next weeks). I don't use pam_ldap
    > currently, because users only need to login by IMAP, POP, SMTP and FTP,
    > for all of these services daemons are used which natively auth against
    > the LDAP server.
    >
    > The more accounts there are in the LDAP directory, the longer the
    > startup of "top" takes. With the current userbase top takes about 3-4
    > seconds to start (on a mostly idle Dual Xeon 2.8GHz with fast disks and
    > local slapd).

    FWIW, I don't think this is related to LDAP as such. I have a machine
    bound to NIS with ~19000 entries in the passwd file. Top takes ages to
    start up.

    The problem is in machine.c - it iterates over every user in the passwd
    file to figure out what how many characters longest username may be.
    It's nasty and to be honest I think it can/should just be removed.

    Try the attached patch just to prove that this is the cause in your case
    too.

    A while back, there was talk of a FreeBSD libc name cache daemon, but I
    can't seem to find any reference to it now (I seem to remember the
    website was within .ru, if it helps anyone find it) - though I'm not
    sure it would help in this context or even if it's really the correct
    way to mask the bug.

    Gavin

    _______________________________________________
    freebsd-stable@freebsd.org mailing list
    http://lists.freebsd.org/mailman/listinfo/freebsd-stable
    To unsubscribe, send any mail to "freebsd-stable-unsubscribe@freebsd.org"

  • Next message: Marc Santhoff: "Re: [4.11] sysctl reports garbage"

    Relevant Pages

    • Re: nss_ldap / top startup
      ... > be growing to approx 60000 in the next weeks). ... > against the LDAP server. ... > The startup time is not any different, sometimes I feel (did not try ... > running processes are only from a few uids, ...
      (freebsd-stable)
    • newest OpenSSH w/ PAM ignoring "sshd account" configs?
      ... account" settings and not even attempting to talk to the LDAP server ... to look up the account.. ... passwd file can log in, if theres a user in ldap, if I put them in ... Anyone know if I'm doing something wrong or theres a bug in openssh? ...
      (comp.security.ssh)
    • Re: store freebsd accounts in mysql ???
      ... use the passwd file to store user accounts and password lead ... I'm using ldap for authentication. ...
      (freebsd-questions)