rpms/openldap
3
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
Clone of https://src.fedoraproject.org/rpms/openldap
331 Commits 36 Branches 164 Tags 2.3 MiB
Shell 65.3%
Makefile 34.7%
1f24c419dd
Go to file
Jan Vcelak 1f24c419dd fix: connection hangs after fallback to second server when certificate hostname verification fails 
Resolves: #852476
2012-09-14 16:13:39 +02:00
.gitignore new upstream release (2.4.32) 2012-08-01 13:39:25 +02:00
ldap.conf
libexec-check-config.sh
libexec-convert-config.sh
libexec-create-certdb.sh
libexec-functions
libexec-generate-server-cert.sh
libexec-upgrade-db.sh
openldap-ai-addrconfig.patch fix: querying for IPv6 DNS records when IPv6 is disabled on the host 2012-07-19 11:00:43 +02:00
openldap-autoconf-pkgconfig-nss.patch
openldap-constraint-count.patch
openldap-dns-priority.patch
openldap-evolution-ntlm.patch
openldap-fedora-systemd.patch
openldap-ldaprc-currentdir.patch
openldap-man-sasl-nocanon.patch
openldap-manpages.patch
openldap-nss-allow-certname-with-token-name.patch prefer key from authenticated slot, allow certificate name with token 2012-08-20 20:34:34 +02:00
openldap-nss-default-cipher-suite-always-selected.patch
openldap-nss-multiple-tls-contexts.patch
openldap-nss-prefer-unlocked-key.patch prefer key from authenticated slot, allow certificate name with token 2012-08-20 20:34:34 +02:00
openldap-nss-update-list-of-ciphers.patch fix: some TLS ciphers cannot be enabled 2012-09-14 16:13:12 +02:00
openldap-reentrant-gethostby.patch
openldap-security-pie.patch
openldap-smbk5pwd-overlay.patch new upstream release (2.4.32) 2012-08-01 13:39:25 +02:00
openldap-sql-linking.patch
openldap-syncrepl-unset-tls-options.patch
openldap-tls-no-reuse-of-tls_session.patch fix: connection hangs after fallback to second server when certificate hostname verification fails 2012-09-14 16:13:39 +02:00
openldap-userconfig-setgid.patch
openldap.spec fix: connection hangs after fallback to second server when certificate hostname verification fails 2012-09-14 16:13:39 +02:00
README.evolution
slapd.ldif
slapd.service
slapd.sysconfig add KRB5_KTNAME to /etc/sysconfig/slapd 2012-08-09 10:39:07 +02:00
slapd.tmpfiles
sources new upstream release (2.4.32) 2012-08-01 13:39:25 +02:00

README.evolution 

These files are here specifically for use in building the evolution-connector
package, and should not be used for any other purpose.

In order to authenticate to older servers, an LDAP client must perform an
ntlm_bind operation instead of a simple or SASL bind.  The ntlm_bind is not the
same thing as performing SASL authentication using NTLM as the mechanism, which
wouldn't require any patching.  Newer servers properly support DIGEST-MD5, so
this requirement only applies to clients which want to authenticate to older
servers, and this requirement will hopefully go away at some point.

Because the changes involved both modify the libldap ABI and add
non-standardized messages to the protocol, changed libraries are built
statically and stashed in a directory where they will not be found by a
compiler using the default search paths.

The openldap-devel package provides "openldap-evolution-devel" if it includes a
patched version of these libraries in such a directory.  Packages which depend
on these libraries should BuildRequire this virtual provision so that they
don't fail to compile or get miscompiled if the libraries are not present.

If/when the evolution-connector package stops requiring these changes, the
changed libraries will simply disappear.