[UCI-Linux] Fedora Core 3 Update: openldap-2.2.29-1.FC3

Mike Iglesias iglesias at draco.acs.uci.edu
Thu Dec 1 16:01:16 PST 2005

From: "Jay Fenlason" <fenlason at redhat.com>
To: fedora-announce-list at redhat.com
Date: Thu, 1 Dec 2005 16:51:17 -0500
Subject: Fedora Core 3 Update: openldap-2.2.29-1.FC3

Fedora Update Notification

Product     : Fedora Core 3
Name        : openldap
Version     : 2.2.29                      
Release     : 1.FC3                  
Summary     : The configuration files, libraries, and documentation for OpenLDAP.
Description :
OpenLDAP is an open source suite of LDAP (Lightweight Directory Access
Protocol) applications and development tools. LDAP is a set of
protocols for accessing directory services (usually phone book style
information, but other information is possible) over the Internet,
similar to the way DNS (Domain Name System) information is propagated
over the Internet. The openldap package contains configuration files,
libraries, and documentation for OpenLDAP.

Update Information:

Since the test upgrade to 2.2.29 for FC4 didn't generate 
any complaints, it's time to try a test upgrade for FC3.  
Because the OpenLDAP in FC3 is pretty old, this update is 
ever more risky than the FC4 one.  Make sure you LDAP 
databse is backed up before installing it. 
* Thu Sep 29 2005 Jay Fenlason <fenlason at redhat.com> 2.2.28-2
- Upgrade to nev upstream version.  This makes the 2.2.*-hop patch obsolete.

* Mon Aug 22 2005 Jay Fenlason <fenlason at redhat.com> 2.2.26-2
- Move the slapd.pem file to /etc/pki/tls/certs
  and edit the -config patch to match to close
  bz#143393  Creates certificates + keys at an insecure/bad place
- also use _sysconfdir instead of hard-coding /etc

* Thu Aug 11 2005 Jay Fenlason <fenlason at redhat.com> 
- Add the tls-fix-connection-test patch to close
  bz#161991 openldap password disclosure issue
- add the hop patches to prevent infinite looping when chasing referrals.
  OpenLDAP ITS #3578

* Fri Aug  5 2005 Nalin Dahyabhai <nalin at redhat.com>
- fix typo in ldap.init (call $klist instead of klist, from Charles Lopes)

* Thu May 19 2005 Nalin Dahyabhai <nalin at redhat.com> 2.2.26-1
- run slaptest with the -u flag if no id2entry db files are found, because
  you can't check for read-write access to a non-existent database (#156787)
- add /etc/openldap/cacerts, which authconfig sets as the
  TLS_CACERTDIR path in /etc/openldap/ldap.conf now
- use a temporary wrapper script to launch slapd, in case we have arguments
  with embedded whitespace (#158111)

* Wed May  4 2005 Nalin Dahyabhai <nalin at redhat.com>
- update to 2.2.26 (stable 20050429)
- enable the lmpasswd scheme
- print a warning if slaptest fails, slaptest -u succeeds, and one of the
  directories listed as the storage location for a given suffix in slapd.conf
  contains a readable file named __db.001 (#118678)

* Tue Apr 26 2005 Nalin Dahyabhai <nalin at redhat.com> 2.2.25-1
- update to 2.2.25 (release)

* Tue Apr 26 2005 Nalin Dahyabhai <nalin at redhat.com> 2.2.24-1
- update to 2.2.24 (stable 20050318)
- export KRB5_KTNAME in the init script, in case it was set in the sysconfig
  file but not exported

* Tue Mar  1 2005 Nalin Dahyabhai <nalin at redhat.com> 2.2.23-4
- prefer libresolv to libbind

* Tue Mar  1 2005 Nalin Dahyabhai <nalin at redhat.com> 2.2.23-3
- add bind-libbind-devel and libtool-ltdl-devel buildprereqs

* Tue Mar  1 2005 Tomas Mraz <tmraz at redhat.com> 2.2.23-2
- rebuild with openssl-0.9.7e

* Mon Jan 31 2005 Nalin Dahyabhai <nalin at redhat.com> 2.2.23-1
- update to 2.2.23 (stable-20050125)
- update notes on upgrading from earlier versions
- drop slapcat variations for 2.0/2.1, which choke on 2.2's config files

* Tue Jan  4 2005 Nalin Dahyabhai <nalin at redhat.com> 2.2.20-1
- update to 2.2.20 (stable-20050103)
- warn about unreadable krb5 keytab files containing "ldap" keys
- warn about unreadable TLS-related files
- own a ref to subdirectories which we create under %{_libdir}/tls

* Tue Nov  2 2004 Nalin Dahyabhai <nalin at redhat.com> 2.2.17-0
- rebuild

* Thu Sep 30 2004 Nalin Dahyabhai <nalin at redhat.com>
- update to 2.2.17 (stable-20040923) (#135188)
- move nptl libraries into arch-specific subdirectories on %{ix86} boxes
- require a newer glibc which can provide nptl libpthread on i486/i586

* Tue Aug 24 2004 Nalin Dahyabhai <nalin at redhat.com>
- move slapd startup to earlier in the boot sequence (#103160)
- update to 2.2.15 (stable-20040822)
- change version number on compat-openldap to include the non-compat version
  from which it's compiled, otherwise would have to start 2.2.15 at release 3
  so that it upgrades correctly

This update can be downloaded from:

3c052ebf0ea89f8043745ea1316c8fa7  SRPMS/openldap-2.2.29-1.FC3.src.rpm
e91939937549353f701c67d714aa9e34  x86_64/openldap-2.2.29-1.FC3.x86_64.rpm
87128b39dc854f3512ac7cf01a847af0  x86_64/openldap-devel-2.2.29-1.FC3.x86_64.rpm
ee4b182dba186434091f4ed70e2260f4  x86_64/openldap-servers-2.2.29-1.FC3.x86_64.rpm
75881a0ee92492b68af2985b0a928147  x86_64/openldap-servers-sql-2.2.29-1.FC3.x86_64.rpm
fffd0ade442bd4566709665e2a914fa7  x86_64/openldap-clients-2.2.29-1.FC3.x86_64.rpm
366b07cf11cd4f6cd968bce1699e708d  x86_64/compat-openldap-2.2.29_2.1.30-1.FC3.x86_64.rpm
01217650770d476ae54e720b4683cc3a  x86_64/debug/openldap-debuginfo-2.2.29-1.FC3.x86_64.rpm
e57eebad07b69b93556c1ba5b3ba7539  x86_64/openldap-2.2.29-1.FC3.i386.rpm
6a6e656bf3726ada3900adea1bc7bde4  x86_64/compat-openldap-2.2.29_2.1.30-1.FC3.i386.rpm
e57eebad07b69b93556c1ba5b3ba7539  i386/openldap-2.2.29-1.FC3.i386.rpm
172c14b7fc249e18dbbd285920451b25  i386/openldap-devel-2.2.29-1.FC3.i386.rpm
9719b4fd54ddc05ae2da61bb5e62729f  i386/openldap-servers-2.2.29-1.FC3.i386.rpm
94a352bfc63ca101d46dd0bcec34200c  i386/openldap-servers-sql-2.2.29-1.FC3.i386.rpm
e971c26a61481f3bd09807a467007adf  i386/openldap-clients-2.2.29-1.FC3.i386.rpm
6a6e656bf3726ada3900adea1bc7bde4  i386/compat-openldap-2.2.29_2.1.30-1.FC3.i386.rpm
b0bf94f4c283995805ff37991131d073  i386/debug/openldap-debuginfo-2.2.29-1.FC3.i386.rpm

This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.  

fedora-announce-list mailing list
fedora-announce-list at redhat.com

More information about the UCI-Linux mailing list