LDAP support libraries
Go to file
2011-10-27 14:45:10 +02:00
.gitignore rebase to 2.4.26 2011-07-20 16:44:30 +02:00
ldap.init system resource limiting for slapd using ulimit 2011-03-18 12:51:00 +01:00
ldap.sysconfig root user management ACLs on cn=config 2011-06-27 18:53:28 +02:00
ldap.tmpfiles setup tempfiles.d to create runtime directory when using tmpfs 2011-01-20 17:38:36 +01:00
openldap-constraint-overlay-config.patch fix: conversion of constraint overlay settings to cn=config is incorrect 2011-08-24 18:58:45 +02:00
openldap-dds-overlay-tolerance.patch fix: DDS overlay tolerance parametr doesn't function and breakes default TTL 2011-08-24 19:01:05 +02:00
openldap-dns-priority.patch new feature update: honor priority/weight with ldap_domain2hostlist 2011-09-21 11:05:39 +02:00
openldap-evolution-ntlm.patch reapplied all patches 2011-02-14 14:30:30 +01:00
openldap-ldaprc-currentdir.patch reapplied all patches 2011-02-14 14:30:30 +01:00
openldap-man-ldap-sync.patch manpage fix: wrong ldap_sync_destroy() prototype in ldap_sync(3) manpage 2011-08-24 19:24:49 +02:00
openldap-man-slapo-unique.patch manpage fix: errors in manual page slapo-unique 2011-08-24 19:05:49 +02:00
openldap-manpages.patch reapplied all patches 2011-02-14 14:30:30 +01:00
openldap-nss-free-peer-cert.patch fix: memleak in tlsm_auth_cert_handler 2011-07-20 16:44:40 +02:00
openldap-nss-handshake-threadsafe.patch fix: SSL_ForceHandshake function is not thread safe 2011-09-12 15:35:09 +02:00
openldap-nss-init-threadsafe.patch fix: NSS_Init* functions are not thread safe 2011-08-24 18:18:33 +02:00
openldap-nss-memleak-free-certs.patch fix: memleak - free the return of tlsm_find_and_verify_cert_key 2011-08-24 18:48:35 +02:00
openldap-nss-reqcert-hostname.patch incorrect behavior of allow/try options of VerifyCert and TLS_REQCERT 2011-08-24 18:40:37 +02:00
openldap-nss-verifycert.patch incorrect behavior of allow/try options of VerifyCert and TLS_REQCERT 2011-08-24 18:40:37 +02:00
openldap-nss-wildcards.patch fix: matching wildcard hostnames in certificate Subject field does not work 2011-08-24 19:12:30 +02:00
openldap-reentrant-gethostby.patch reapplied all patches 2011-02-14 14:30:30 +01:00
openldap-security-pie.patch reapplied all patches 2011-02-14 14:30:30 +01:00
openldap-smbk5pwd-overlay.patch reapplied all patches 2011-02-14 14:30:30 +01:00
openldap-sql-linking.patch reapplied all patches 2011-02-14 14:30:30 +01:00
openldap-syncrepl-unset-tls-options.patch fix: allow unsetting of tls_* syncrepl options 2011-09-12 18:42:53 +02:00
openldap-userconfig-setgid.patch reapplied all patches 2011-02-14 14:30:30 +01:00
openldap.spec hardened build: remove LDFLAGS, enable macro 2011-10-27 14:45:10 +02:00
README.evolution - spell out explicitly that the evo-openldap stuff shouldn't be used for any 2005-02-02 23:44:13 +00:00
series server upgrade hangs or do not upgrade the database 2011-03-18 23:15:49 +01:00
slapd.conf root user management ACLs on cn=config 2011-06-27 18:53:28 +02:00
sources rebase to 2.4.26 2011-07-20 16:44:30 +02:00

These files are here specifically for use in building the evolution-connector
package, and should not be used for any other purpose.

In order to authenticate to older servers, an LDAP client must perform an
ntlm_bind operation instead of a simple or SASL bind.  The ntlm_bind is not the
same thing as performing SASL authentication using NTLM as the mechanism, which
wouldn't require any patching.  Newer servers properly support DIGEST-MD5, so
this requirement only applies to clients which want to authenticate to older
servers, and this requirement will hopefully go away at some point.

Because the changes involved both modify the libldap ABI and add
non-standardized messages to the protocol, changed libraries are built
statically and stashed in a directory where they will not be found by a
compiler using the default search paths.

The openldap-devel package provides "openldap-evolution-devel" if it includes a
patched version of these libraries in such a directory.  Packages which depend
on these libraries should BuildRequire this virtual provision so that they
don't fail to compile or get miscompiled if the libraries are not present.

If/when the evolution-connector package stops requiring these changes, the
changed libraries will simply disappear.