File nss-ldapd.changes of Package nss-ldapd

-------------------------------------------------------------------
Wed Aug 26 12:53:54 CEST 2009 - mls@suse.de

- make patch0 usage consistent

-------------------------------------------------------------------
Tue Jun 30 09:12:03 CEST 2009 - rhafer@novell.com

- Updated to 0.6.10:
   * implement searching through multiple search bases, based on a 
     patch by Leigh Wedding
   * fix a segmentation fault that could occur when using any of 
     the tls_* options with a string parameter
   * the code for reading and writing protocol entries between the
     NSS module and the daemon was improved
   * documentation updates
   * removed SSL/TLS related warnings during startup
   * produce more detailed logging in debug mode and allow 
     multiple -d options to be specified to also include logging
     from the LDAP library
   * some LDAP configuration options are now initialized globally
     instead of per connection which should fix problems with the
     tls_reqcert option
   * documentation improvements for the NSLCD protocol used between
     the NSS module and the nslcd server
   * fix a bug with writing alternate service names and add checks
     for validity of passed buffer in NSS module
- Fixed a possible off by one bug in nslcd (bnc#515559)

-------------------------------------------------------------------
Thu Jun 25 12:52:57 CEST 2009 - sbrabec@suse.cz

- Supplement glibc-32bit/glibc-64bit in baselibs.conf (bnc#354164).

-------------------------------------------------------------------
Wed Mar 25 16:46:09 CET 2009 - rhafer@suse.de

- Updated to 0.6.8:
  * the nss-ldapd.conf was created world-readable which could cause
    problems if the bindpw option is used. (bnc#487737, CVE-2009-1073)
  * clean the environment and set LDAPNOINIT to disable parsing of LDAP
    configuration files (.ldaprc, /etc/ldap/ldap.conf, etc)
  * remove sslpath option because it wasn't used
  * correctly set SSL/TLS options when using StartTLS
  * rename the tls_checkpeer option to tls_reqcert, deprecating the old name
    and supporting all values that OpenLDAP supports
  * allow backslashes in user and group names execpt as first or last
    character
  * check user and group names against LOGIN_NAME_MAX if it is defined
  * allow spaces in user and group names because it was causing problems in
    some environments
  * if ldap_set_option() fails log the option name instead of number
  * retry connecting to LDAP server in more cases
- Adjust config file permissions upon update, to fix world-readable
  /etc/nss-ldapd.conf as created by older versions 
  (bnc#487737, CVE-2009-1073)

-------------------------------------------------------------------
Fri Aug 15 09:18:57 CEST 2008 - rhafer@suse.de

- Fixed "Required-Stop" Tag to include the same services as
  "Required-Start"
- removed "Should-Start" Tag

-------------------------------------------------------------------
Wed Aug  6 16:33:20 CEST 2008 - rhafer@suse.de

- initial version for nss-ldapd-0.6.4 (Fate#303597)