705b2a5032
Resolves: #917603 #872784 |
||
|---|---|---|
| .gitignore | ||
| README.evolution | ||
| ldap.conf | ||
| libexec-check-config.sh | ||
| libexec-convert-config.sh | ||
| libexec-create-certdb.sh | ||
| libexec-functions | ||
| libexec-generate-server-cert.sh | ||
| libexec-upgrade-db.sh | ||
| openldap-ai-addrconfig.patch | ||
| openldap-autoconf-pkgconfig-nss.patch | ||
| openldap-autoreconf.patch | ||
| openldap-dns-priority.patch | ||
| openldap-evolution-ntlm.patch | ||
| openldap-fedora-systemd.patch | ||
| openldap-ldaprc-currentdir.patch | ||
| openldap-man-sasl-nocanon.patch | ||
| openldap-manpages.patch | ||
| openldap-nss-allow-certname-with-token-name.patch | ||
| openldap-nss-certs-from-certdb-fallback-pem.patch | ||
| openldap-nss-default-cipher-suite-always-selected.patch | ||
| openldap-nss-ignore-certdb-type-prefix.patch | ||
| openldap-nss-multiple-tls-contexts.patch | ||
| openldap-nss-regex-search-hashed-cacert-dir.patch | ||
| openldap-nss-update-list-of-ciphers.patch | ||
| openldap-reentrant-gethostby.patch | ||
| openldap-security-pie.patch | ||
| openldap-smbk5pwd-overlay.patch | ||
| openldap-sql-linking.patch | ||
| openldap-syncrepl-unset-tls-options.patch | ||
| openldap-tls-no-reuse-of-tls_session.patch | ||
| openldap-userconfig-setgid.patch | ||
| openldap.spec | ||
| slapd.ldif | ||
| slapd.service | ||
| slapd.sysconfig | ||
| slapd.tmpfiles | ||
| sources | ||
README.evolution
These files are here specifically for use in building the evolution-connector package, and should not be used for any other purpose. In order to authenticate to older servers, an LDAP client must perform an ntlm_bind operation instead of a simple or SASL bind. The ntlm_bind is not the same thing as performing SASL authentication using NTLM as the mechanism, which wouldn't require any patching. Newer servers properly support DIGEST-MD5, so this requirement only applies to clients which want to authenticate to older servers, and this requirement will hopefully go away at some point. Because the changes involved both modify the libldap ABI and add non-standardized messages to the protocol, changed libraries are built statically and stashed in a directory where they will not be found by a compiler using the default search paths. The openldap-devel package provides "openldap-evolution-devel" if it includes a patched version of these libraries in such a directory. Packages which depend on these libraries should BuildRequire this virtual provision so that they don't fail to compile or get miscompiled if the libraries are not present. If/when the evolution-connector package stops requiring these changes, the changed libraries will simply disappear.