System Security Services Daemon
https://pagure.io/SSSD/sssd
Provides a set of daemons to manage access to remote directories and
authentication mechanisms. It provides an NSS and PAM interface toward
the system and a pluggable backend system to connect to multiple different
account sources. It is also the basis to provide client auditing and policy
services for projects like FreeIPA.
- Devel package for openSUSE:Factory
-
10
derived packages
- Links to openSUSE:Factory / sssd
- Download package
-
Checkout Package
osc -A https://api.opensuse.org checkout network:ldap/sssd && cd $_
- Create Badge
Refresh
Refresh
Source Files
Filename | Size | Changed |
---|---|---|
baselibs.conf | 0000000123 123 Bytes | |
harden_sssd-ifp.service.patch | 0000000778 778 Bytes | |
harden_sssd-kcm.service.patch | 0000000855 855 Bytes | |
krb-noversion.diff | 0000000712 712 Bytes | |
sssd-2.6.1.tar.gz | 0007454377 7.11 MB | |
sssd-2.6.1.tar.gz.asc | 0000000488 488 Bytes | |
sssd.changes | 0000080619 78.7 KB | |
sssd.keyring | 0000001749 1.71 KB | |
sssd.spec | 0000023215 22.7 KB |
Revision 253 (latest revision is 313)
Jan Engelhardt (jengelh)
accepted
request 933479
from
Johannes Segitz (jsegitz)
(revision 253)
Automatic systemd hardening effort by the security team. This has not been tested. For details please see https://en.opensuse.org/openSUSE:Security_Features#Systemd_hardening_effort
Comments 7
Will the build problem for Leap 15.1 or Leap 15.2 because of a not sufficient p11-kit version solved ? It would be also interesting if a sssd-kcm package (available since version 1.16) could be built for the new sssd release. Thanks for your infos !
Not from my side. Yes.
Thank you for the fast response and the building of the sssd-kcm package !
Is there a timeline for when 2.6.3 will be submitted to factory? Particularly, it addresses a major regression in AD authentication introduced in 2.6.2.
whenever they get their signature file right :-/
https://github.com/SSSD/sssd/releases/download/2.6.3/sssd-2.6.3.tar.gz.asc seems to be fine. But 2.6.3 release tarball is signed by Pavel's key and sssd.keyring only contains Alexey's key.
@jengelh, do you agree to add both keys to the keyring?
Hi! Are there any objections to adding
--with-subid
to the build options to enable support for https://github.com/SSSD/sssd/commit/f546088226872f24722bdd94388816792bd5891a ? If I am not mistaken, our version ofshadow
(v4.11.1) should already include support for it, as per https://github.com/shadow-maint/shadow/commit/8492dee6632e340dee76eee895c3e30877bebf45.