Go to file
2013-04-02 13:39:38 +02:00
.gitignore new upstream release 2013-04-02 13:31:35 +02:00
ldap.conf certificates management improvements 2012-02-14 17:22:50 +01:00
libexec-check-config.sh fix: slapd.service should not use /tmp 2012-10-11 11:56:59 +02:00
libexec-convert-config.sh fix: slapd.service should not use /tmp 2012-10-11 11:56:59 +02:00
libexec-create-certdb.sh certificates management improvements 2012-02-14 17:22:50 +01:00
libexec-functions fix: check-config.sh get stuck when executing command as a ldap user 2012-02-15 14:26:49 +01:00
libexec-generate-server-cert.sh fix: slapd.service should not use /tmp 2012-10-11 11:56:59 +02:00
libexec-upgrade-db.sh move maintainance scripts from libexec/slapd to libexec/openldap 2012-02-14 13:42:07 +01:00
openldap-ai-addrconfig.patch new upstream release (2.4.34) 2013-03-06 23:09:06 +01:00
openldap-autoconf-pkgconfig-nss.patch new upstream release (2.4.33) 2012-10-11 11:47:24 +02:00
openldap-dns-priority.patch new feature update: honor priority/weight with ldap_domain2hostlist 2011-09-21 11:05:39 +02:00
openldap-evolution-ntlm.patch new upstream release (2.4.34) 2013-03-06 23:09:06 +01:00
openldap-fedora-systemd.patch new upstream release (2.4.34) 2013-03-06 23:09:06 +01:00
openldap-ldaprc-currentdir.patch new upstream release (2.4.34) 2013-03-06 23:09:06 +01:00
openldap-man-sasl-nocanon.patch fix: SASL_NOCANON option missing in ldap.conf manual page 2012-02-22 15:46:23 +01:00
openldap-manpages.patch new upstream release (2.4.34) 2013-03-06 23:09:06 +01:00
openldap-nss-allow-certname-with-token-name.patch prefer key from authenticated slot, allow certificate name with token 2012-08-20 20:34:34 +02:00
openldap-nss-certs-from-certdb-fallback-pem.patch new upstream release (2.4.34) 2013-03-06 23:09:06 +01:00
openldap-nss-default-cipher-suite-always-selected.patch fix: default cipher suite is always selected 2012-06-27 14:10:28 +02:00
openldap-nss-ignore-certdb-type-prefix.patch new upstream release (2.4.33) 2012-10-11 11:47:24 +02:00
openldap-nss-multiple-tls-contexts.patch fix: less influence between individual TLS contexts 2012-06-27 14:40:59 +02:00
openldap-nss-regex-search-hashed-cacert-dir.patch fix: not all certificates in OpenSSL compatible CA certificate directory format are loaded 2012-09-14 16:13:59 +02:00
openldap-nss-update-list-of-ciphers.patch fix: some TLS ciphers cannot be enabled 2012-09-14 16:13:12 +02:00
openldap-reentrant-gethostby.patch new upstream release (2.4.34) 2013-03-06 23:09:06 +01:00
openldap-security-pie.patch new upstream release (2.4.28) 2011-11-30 16:51:05 +01:00
openldap-smbk5pwd-overlay.patch new upstream release (2.4.32) 2012-08-01 13:39:25 +02:00
openldap-sql-linking.patch reapplied all patches 2011-02-14 14:30:30 +01:00
openldap-syncrepl-unset-tls-options.patch new upstream release (2.4.34) 2013-03-06 23:09:06 +01:00
openldap-tls-no-reuse-of-tls_session.patch new upstream release (2.4.34) 2013-03-06 23:09:06 +01:00
openldap-userconfig-setgid.patch new upstream release (2.4.34) 2013-03-06 23:09:06 +01:00
openldap.spec fix: slapd.service should ensure that network is up before starting 2013-04-02 13:39:38 +02:00
README.evolution - spell out explicitly that the evo-openldap stuff shouldn't be used for any 2005-02-02 23:44:13 +00:00
slapd.ldif certificates management improvements 2012-02-14 17:22:50 +01:00
slapd.service fix: slapd.service should ensure that network is up before starting 2013-04-02 13:39:38 +02:00
slapd.sysconfig add KRB5_KTNAME to /etc/sysconfig/slapd 2012-08-09 10:39:07 +02:00
slapd.tmpfiles provide new sysconfig file, rename ldap to slapd 2011-10-27 17:27:43 +02:00
sources new upstream release 2013-04-02 13:31:35 +02:00

These files are here specifically for use in building the evolution-connector
package, and should not be used for any other purpose.

In order to authenticate to older servers, an LDAP client must perform an
ntlm_bind operation instead of a simple or SASL bind.  The ntlm_bind is not the
same thing as performing SASL authentication using NTLM as the mechanism, which
wouldn't require any patching.  Newer servers properly support DIGEST-MD5, so
this requirement only applies to clients which want to authenticate to older
servers, and this requirement will hopefully go away at some point.

Because the changes involved both modify the libldap ABI and add
non-standardized messages to the protocol, changed libraries are built
statically and stashed in a directory where they will not be found by a
compiler using the default search paths.

The openldap-devel package provides "openldap-evolution-devel" if it includes a
patched version of these libraries in such a directory.  Packages which depend
on these libraries should BuildRequire this virtual provision so that they
don't fail to compile or get miscompiled if the libraries are not present.

If/when the evolution-connector package stops requiring these changes, the
changed libraries will simply disappear.