nixos/modules/services/system/nscd.conf at master · pyrox.dev/nixpkgs

pyrox.dev / nixpkgs

lol

nixpkgs / nixos / modules / services / system / nscd.conf

at master 1.4 kB view raw

 1# We basically use nscd as a proxy for forwarding nss requests to appropriate
 2# nss modules, as we run nscd with LD_LIBRARY_PATH set to the directory
 3# containing all such modules
 4# Note that we can not use `enable-cache no` As this will actually cause nscd
 5# to just reject the nss requests it receives, which then causes glibc to
 6# fallback to trying to handle the request by itself. Which won't work as glibc
 7# is not aware of the path in which the nss modules live.  As a workaround, we
 8# have `enable-cache yes` with an explicit ttl of 0
 9server-user             nscd
10
11enable-cache            passwd          yes
12positive-time-to-live   passwd          0
13negative-time-to-live   passwd          0
14shared                  passwd          yes
15
16enable-cache            group           yes
17positive-time-to-live   group           0
18negative-time-to-live   group           0
19shared                  group           yes
20
21enable-cache            netgroup        yes
22positive-time-to-live   netgroup        0
23negative-time-to-live   netgroup        0
24shared                  netgroup        yes
25
26enable-cache            hosts           yes
27positive-time-to-live   hosts           0
28negative-time-to-live   hosts           0
29shared                  hosts           yes
30
31enable-cache            services        yes
32positive-time-to-live   services        0
33negative-time-to-live   services        0
34shared                  services        yes