  # $Id: nameservice-files 5268 2005-09-08 22:44:11Z sarnold $
  # ----------------------------------------------------------------------
  #    PROPRIETARY DATA of NOVELL INC.
  #    Copyright (c) 2004-2005, NOVELL (All rights reserved)
  #
  #    This document contains trade secret data which is the property
  #    of NOVELL Inc.  This document is submitted to recipient in
  #    confidence. Information contained herein may not be used, copied
  #    or disclosed in whole or in part except as permitted by written
  #    agreement signed by an officer of NOVELL, Inc.
  # ----------------------------------------------------------------------

  # Many programs wish to perform nameservice-like operations, such as
  # looking up users by name or id, groups by name or id, hosts by name
  # or IP, etc. These operations may be performed through files, dns,
  # NIS, NIS+, LDAP, hesiod, wins, etc. Allow them all here.
  /etc/group              r,
  /etc/host.conf          r,
  /etc/hosts              r,
  /etc/ldap.conf          r,
  /etc/nsswitch.conf      r,
  /etc/passwd             r,
  /etc/protocols          r,
  /etc/resolv.conf        r,
  /etc/samba/lmhosts      r,
  /etc/services           r,
  # is this file for openldap servers or clients? wombat makes me think clients
  /etc/openldap/ldap.conf r,
  # The Name Service Cache Daemon can cache lookups, sometimes leading
  # to vast speed increases when working with network-based lookups.
  /var/run/.nscd_socket   rw,
  /var/run/nscd/socket    rw,
  /var/run/nscd/passwd    rix,
  /var/run/nscd/group     rix,
  # nscd renames and unlinks files in it's operation that clients will
  # have open
  /var/run/nscd/db*  rix,

  # The nss libraries are sometimes used in addition to PAM; make sure
  # they are available
  /lib64/libnss_*.so*         r,
  /lib/libnss_*.so*           r,
  /usr/lib64/libnss_*.so*     r,
  /usr/lib/libnss_*.so*       r,
  /etc/default/nss            r,

  # NIS rules
  /var/yp/binding/*           r,
