SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for openldap-mandriva-dit-0.12-1mdv2007.0.i586.rpm :
Mon Aug 21 12:00:00 2006 Andreas Hasenack 0.12-1mlcs4
- added some command-line options to the setup script

Mon Jul 31 12:00:00 2006 Andreas Hasenack 0.11-1mlcs4
- major simplification of ACLs: Unix, Samba and Kerberos Admins were
merged into Account Admins
- docs updated regarding this change

Mon Jul 24 12:00:00 2006 Andreas Hasenack 0.10-2mlcs4
- added substring indexing to sambaSID as allowed/required by new samba-3.0.23 schema
- added equality indexing to sambaSIDList

Mon Jul 24 12:00:00 2006 Andreas Hasenack 0.10-1mlcs4
- fixed #23918 (DNS Admin write ACL)

Tue Jun 27 12:00:00 2006 Andreas Hasenack 0.9-3mdk
- fixed #23381 (openldap module loading on x86_64)
- this is no more a noarch package due to this bug :(
- small documentation addendum to README.heimdal

Thu Jun 22 12:00:00 2006 Andreas Hasenack 0.9-2mdk
- added TODO file
- fixed ACL to allow the user to change some of his own personal attributes
- improved Heimdal documentation setup with instructions on how to integrate
authentication sources (samba, posix and kerberos)

Tue Jun 20 12:00:00 2006 Andreas Hasenack 0.9-1mdk
- re-releasing as version 0.9, changes were too extensive

Tue Jun 6 12:00:00 2006 Andreas Hasenack 0.8-2mdk
- added suggested usage for smbldap-populate to README.samba
- support for kerberos attributes and object classes (heimdal) in ACLs
- added kerberos admins group and its respective admin user
- updated documentation regarding kerberos/heimdal
- added support for referential integrity in group memberships, disabled by
default for now

Fri Jun 2 12:00:00 2006 Andreas Hasenack 0.8-1mdk
- major ACL rewrite:
- allow samba to add its classes/attributes to existing posix entries
that still to not have them (i.e., just pure unix users)
- fix pwdReset access
- fix dhcp readers acl
- fix dns acl for base entry
- fix shadowLastChange access logic
- cleanup
- let Unix Admins also create entries under Host. After all, these
are posix entries and will show up as unix users, although they
are mainly used by samba
- remove one XXX, yay :)
- move AATTinetOrgPerson
- updated README.dns regarding the use of hostnames (and not IP addresses) in
named.conf

Mon May 15 12:00:00 2006 Andreas Hasenack 0.7-1mdk
- fix a loophole in ACLs which permitted some system users to include
themselves in other groups, thus gaining more privileges. We now
have the \"ou=System Groups\" branch to differenciate from the
regular group accounts

Wed May 10 12:00:00 2006 Andreas Hasenack 0.6-4mdk
- allow some objectClasses in ACLs for the Address Book branch

Tue May 9 12:00:00 2006 Andreas Hasenack 0.6-3mdk
- included README.samba in spec file

Tue May 9 12:00:00 2006 Andreas Hasenack 0.6-2mdk
- more fixes for DHCP ACLs
- added README.sudo

Fri May 5 12:00:00 2006 Andreas Hasenack 0.6-1mdk
- add admin account to the summary that is displayed before conf files are
touched
- add README.dns, README.samba, README.dhcp
- fixed dhcp ACLs, added new group for dhcp read access (anonymous access
is still allowed, though)
- added default indexes for dhcp attributes

Wed May 3 12:00:00 2006 Andreas Hasenack 0.5-1mdk
- fixed /etc/openldap/ldap.conf creation: the changed options were being
left commented instead of activated
- reduce calls to hostname
- fix dns acls, there was a regexp leftover in there

Tue May 2 12:00:00 2006 Andreas Hasenack 0.4-1mdk
- fixed ou=DNS ACLs, tested with bind
- created new DNS group whose members can read ou=dns. This avoids
the equivalent of the domain transfer vulnerability, where everyone could
read the whole DNS domain database
- doc update

Thu Apr 27 12:00:00 2006 Andreas Hasenack 0.3-1mdk
- load password policy schema by default, because if one tries to load
the ppolicy overlay without this schema weird errors (hard for a beginner to
debug) show up
- add some text to the README about the fact that we are no longer using the
\"rootdn\" account of the directory
- added support for password policies

Thu Apr 20 12:00:00 2006 Andreas Hasenack 0.2-2mdk
- removed uid=sudo from README file since we don\'t provide this account
anymore
- require openldap-servers >= 2.3

Wed Apr 12 12:00:00 2006 Andreas Hasenack 0.2-1mdk
- drop ACL that forbid uidNumber=0 in the directory, it
is trickier than I thought and probably not worth the
effort
- use description in all base ldif template entries
- more documentation entries
- drop sudo ACLs and generic sudo user for read access, it\'s
not that much worth it since the password stays in the clear
in /etc/ldap.conf
- oops, idmap support had dc=example,dc=com hardcoded in it instead
of AATTSUFFIXAATT
- add support for the group owner concept: the owner can add/remove
members from the group

Wed Apr 12 12:00:00 2006 Andreas Hasenack 0.1-3mdk
- fix for sambaDomain ACL, catched by loic.vaillantAATTedge-it.fr
- added support for ou=Idmap
- added index for sambaGroupType

Tue Apr 11 12:00:00 2006 Andreas Hasenack 0.1-2mdk
- dropped dialog requirement
- better password question
- show the admin dn

Tue Apr 11 12:00:00 2006 Andreas Hasenack 0.1-1mdk
- initial release


  
ICM