nscd doesn't cache crypted passwords from shadow.
Then what is the benefit of nscd? Won't you still access shadow on every authorization request?
Yes, you will. But you won't have several hundred getspent()- or alike calls on a "normal" machine. It's getpwnam() and getpwuid() or getpwent() that cause big load. Create 50000 users and compare the time it takes to ls -la /home with and without nscd. Of course, things like radius and alike scream for a solution. Volunteer to work on it? :-)
Egan
Roman.
--
- -
| Roman Drahtmüller