Fedora 13 Update: nss_ldap-264-10.fc13

updates at fedoraproject.org updates at fedoraproject.org
Sat Sep 11 09:01:42 UTC 2010 

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2010-13559
2010-08-26 00:26:55
--------------------------------------------------------------------------------

Name        : nss_ldap
Product     : Fedora 13
Version     : 264
Release     : 10.fc13
URL         : http://www.padl.com/
Summary     : NSS library and PAM module for LDAP
Description :
This package includes two LDAP access clients: nss_ldap and pam_ldap.
Nss_ldap is a set of C library extensions that allow X.500 and LDAP
directory servers to be used as a primary source of aliases, ethers,
groups, hosts, networks, protocol, users, RPCs, services, and shadow
passwords (instead of or in addition to using flat files or NIS).

Pam_ldap is a module for Linux-PAM that supports password changes, V2
clients, Netscape's SSL, ypldapd, Netscape Directory Server password
policies, access authorization, and crypted hashes.

--------------------------------------------------------------------------------
Update Information:

This update backports a change to prevent nss_ldap from overly recursing into
itself and attempting to contact the directory server while attempting to
resolve network addresses which are needed for contacting the directory server,
and adds an experimental "nss_initgroups_minimum_uid" option to make it easier
to avoid enumeration of supplemental groups for system users.
--------------------------------------------------------------------------------
ChangeLog:

* Fri Aug 20 2010 Nalin Dahyabhai <nalin at redhat.com> 264-10
- add proposed patch for avoiding recursion-until-death while resolving hosts
- take another stab at implementing a working nss_initgroups_minimum_uid
  setting, and default it to 500
- add proposed patch for upstream #421: sometimes errno gets reset before we
  return control to libc
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update nss_ldap' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

More information about the package-announce mailing list