diff options
| author | Arthur de Jong <arthur@arthurdejong.org> | 2010-12-30 21:28:29 +0000 |
|---|---|---|
| committer | Arthur de Jong <arthur@arthurdejong.org> | 2010-12-30 21:28:29 +0000 |
| commit | ba243579c4f745f11e6aceb6487b501a4495bd4f (patch) | |
| tree | 690ab2cd605c7bb93530cb3084aa6d424ef09331 /NEWS | |
| parent | 0920660606c468abd00b7c249b734c66774ec425 (diff) | |
get files ready for 0.8.0 release
git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1358 ef36b2f9-881f-0410-afb5-c4e39611909c
Diffstat (limited to 'NEWS')
| -rw-r--r-- | NEWS | 67 |
1 files changed, 67 insertions, 0 deletions
@@ -1,3 +1,70 @@ +changes from 0.7.13 to 0.8.0 +---------------------------- + +* include Solaris support developed by Ted C. Cheng of Symas Corporation +* include an experimental partial implementation of nslcd in Python (disabled + by default, see --enable-pynslcd configure option) +* implement a nss_min_uid option to filter user entries returned by LDAP +* implement a rootpwmodpw option that allows the root user to change a user's + password without a password prompt +* try to update the shadowLastChange attribute on password change +* all log messages now include a description of the request to more easily + track problems when not running in debug mode +* allow attribute mapping expressions for the userPassword attribute for + passwd, group and shadow entries and by default map it to the unmatchable + password ("*") to avoid accidentally leaking password information +* numerous compatibility improvements +* add --with-pam-seclib-dir and --with-pam-ldap-soname configure options to + allow more control of hot to install the PAM module +* add --with-nss-flavour and --with-nss-maps configure options to support + other C libraries and limit which NSS modules to install +* allow tilde (~) in user and group names +* improvements to the timeout mechanism (connections are now actively timed + out using the idle_timelimit option) +* set socket timeouts on the LDAP connection to disconnect regardless of LDAP + and possibly TLS handling of connection +* better disconnect/reconnect handling of error conditions +* some code improvements and cleanups and several smaller bug fixes +* all internal string comparisons are now also case sensitive (e.g. for + providing DN to username lookups, etc) +* signal handling in the daemon was changed to behave more reliable across + different threading implementations +* nslcd will now always return a positive authorisation result during + authentication to avoid confusing the PAM module when it is only used for + authorisation +* Debian packaging improvement: implement configuring SASL authentication + using Debconf, based on a patch by Daniel Dehennin + + +changes from 0.7.12 to 0.7.13 +----------------------------- + +* fix handling of idle_timelimit option +* fix error code for problem while doing password modification + + +changes from 0.7.11 to 0.7.12 +----------------------------- + +* set a short socket timeout when shutting down the connection to the LDAP + server to avoid disconnect problems when using TLS + + +changes from 0.7.10 to 0.7.11 +----------------------------- + +* grow the buffer for the PAM ruser to not reject logins for users with + a ruser including a domain part +* Debian packaging improvements + + +changes from 0.7.9 to 0.7.10 +---------------------------- + +* handle errors from ldap_result() better and disconnect (and reconnect) + in more cases + + changes from 0.7.8 to 0.7.9 --------------------------- |