X-Git-Url: https://git.adam-barratt.org.uk/?a=blobdiff_plain;f=debian%2Fchangelog;h=1ce12b9fcf23670ad331bae284e8b05f7c3f12e4;hb=10b02ea8a3390312e224a7e4fb64b93439c7d327;hp=46c05b4a7a7ef0e6c03204f39eb3fa93ac02a71c;hpb=c0d17c415af9716cca033e6dab59aaa4d713c06e;p=mirror%2Fuserdir-ldap.git diff --git a/debian/changelog b/debian/changelog index 46c05b4..1ce12b9 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,100 @@ +userdir-ldap (0.3.XX) unstable; urgency=low + + * ud-mailgate: Do not support del requests for sshDSAAuthKey - there is no + such attribute. + + -- Peter Palfrader Fri, 26 Sep 2008 14:21:26 +0200 + +userdir-ldap (0.3.43) unstable; urgency=low + + * FQHNs sometimes, well always, include dots. + + -- Peter Palfrader Tue, 16 Sep 2008 15:07:21 +0200 + +userdir-ldap (0.3.42) unstable; urgency=low + + * Export all accounts into sudo-passwd, even if they + do not have a sudo password set. Set their password to '*' then. + etc/pam.d/sudo should look like this then: + auth [authinfo_unavail=ignore success=done ignore=ignore default=die] pam_pwdfile.so pwdfile=/var/lib/misc/thishost/sudo-passwd + auth required pam_unix.so nullok_secure try_first_pass + @include common-account + + -- Peter Palfrader Tue, 16 Sep 2008 14:30:41 +0200 + +userdir-ldap (0.3.41) unstable; urgency=low + + * ud-generate: lower casing the sudopasswd ldap entry prior to parsing + and verifying it was a bad idea. + + -- Peter Palfrader Mon, 15 Sep 2008 19:26:14 +0200 + +userdir-ldap (0.3.40) unstable; urgency=low + + * Reading the hmac key only once is too troublesome. + + -- Peter Palfrader Mon, 15 Sep 2008 01:12:23 +0200 + +userdir-ldap (0.3.39) unstable; urgency=low + + * Lowercasing hashed sudo passwords in ud-mailgate not considered smart. + + -- Peter Palfrader Mon, 15 Sep 2008 00:40:13 +0200 + +userdir-ldap (0.3.38) unstable; urgency=low + + * Fix order of some calls so stuff works again. + * And import pwd and os and the hmac crowed in userdir_ldap.py. + * Using the right variable name will also help. + + -- Peter Palfrader Mon, 15 Sep 2008 00:18:37 +0200 + +userdir-ldap (0.3.37) unstable; urgency=low + + * ud-mailgate: Do not commit any changes if one of the requests is invalid + or could not be parsed or caused an error or anything. + * Add sudoPassword to schema, and the slapd.conf/ACL snippet + A sudoPassword entry in LDAP has the form of + " unconfirmed ", or + " confirmed:::")> " + * ud-mailgate: Implement confirmation of sudoPassword field: + A confirmationation is of the form + "confirm sudopassword ::")>" + * ud-generate: generate a sudo passwd file + + -- Peter Palfrader Sun, 14 Sep 2008 23:45:36 +0200 + +userdir-ldap (0.3.36) unstable; urgency=low + + * Aha. Error is not some magic variable or exception, it's a + normal string that needs defining when we use it. + + -- Peter Palfrader Sat, 19 Jul 2008 21:35:39 +0200 + +userdir-ldap (0.3.35) unstable; urgency=low + + * Check if a key has encryption capabilities and fail saying so when + trying to encrypt stuff (like passwords) to users. All this does is + give nicer error messages, it previously failed with just "gpg failed". + + -- Peter Palfrader Sat, 19 Jul 2008 16:17:13 +0200 + +userdir-ldap (0.3.34) unstable; urgency=low + + * ud-info: fix changing of DD status/DD status comment - + we were missing prompt information so we got a backtrace. + * ud-info: Warn when we don't have a prompt string for + attributes on startup. + * ud-info: Change the "retired" status to "inactive". + inactive covers memorial, removed, expelled more clearly. + * userdir_gpg.py + - do not use SIGEXPIRED, it's deprecated + - use EXPKEYSIG to tell if a signature is made by an expired key. + - Check that the primary key is not expired, even if we get a + GOODSIG status from gnupg. Based on patch by Jeremy T. Bouse. + + -- Peter Palfrader Tue, 08 Jul 2008 14:33:08 +0200 + userdir-ldap (0.3.33) unstable; urgency=low * add "security simple_bind=128" to sample slapd.conf.