X-Git-Url: https://git.adam-barratt.org.uk/?a=blobdiff_plain;f=debian%2Fchangelog;h=d62afbb5a491d0fe8b7d5bc23a20cb2d8360d221;hb=60e335bcb88d3995e4cc7217829b1bad233f7c8c;hp=a433320377986f09cfeb2d2c9591babad29cfcb2;hpb=f2d431dee2f52f071afa1fd00d4e4589b1f5899e;p=mirror%2Fuserdir-ldap.git diff --git a/debian/changelog b/debian/changelog index a433320..d62afbb 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,18 +1,81 @@ -userdir-ldap (0.3.XXX) UNRELEASED; urgency=low +userdir-ldap (0.3.80) UNRELEASED; urgency=low [ Peter Palfrader ] * some ud-echelon fixes, * userdir_gpg.py: GetClearSig: add lax_multipart to deal with random multipart mails. * naming your variable like a module is unsmart. - * ud-generate: filter on shadowAccount. + * ud-generate: + - filter on shadowAccount. + - fix breaking old ud-generate locks. * ud-mailgate: only run ldapmodfiy if we actually have attributes to modify. + * ud-replicate: + - do not hard-code 'debian.org' in the 'write-zonefile debian.org' call, + but instead re-use the domain from email-append. + - now preserve server side modifcation times when rsyncing data. + * userdir_ldap.py: read auth password from environment if set. + * Introduce BaseBaseDN which is the real base dn. BaseDN itself + has historically been used as the root of the user tree. + * Allow a set of users to be ignored for picking UIDs. + * When picking uid/gid numbers try to pick the same number for both. + * Merge from torproject.org: + - Allow sshRSAAuthKey for role accounts. + - Support ssh key attributes for gitolite export. + - Add ssh-gitolite support. + * debianGroups may have cn attribute (helpful when putting samba stuff into + ldap). + * ud-mailgate: Do not try to do an ldap modify with no changes - now show + command to changes@ should work again. + * ud-generate: No longer expand $ in dnsZoneEntry data to a \n\t. + * ud-generate: Move code into getLastBuildTime() and getLastLDAPChangeTime() + functions. + * ud-generate: Add -f option to build even if cache is current. + * ud-generate: Move main code into a ud_generate() + * ud-generate: speed improvements: + - cut down on calls to IsInGroup by doing it once in generate_host() + and not having the individual generators run it. + o side effect: Up until now we exported empty groups to a host, if + that group had a user with that group as their primary group - even + if that particular user was not exported to this this. No we no + longer export empty groups. + - speed up ssh tarball generation: No longer write indidividual user's ssh + authorized_keys to disk, only to read them later. Directly create a + TarInfo object without referring to any on-disk files. + - get rid of global state variable CurrentHost. This will enable upcoming + changes. + - UDLdap.py: make a cache for __getitem__() decisions. + - wrap cdbmake calls in eatmydata. Nothing else does any fsync stuff, + so doing it here just costs a lot. + * ud-generate: Use a flock() lock instead of python's lockfile class. + * ud-generate: The ssh authorized_keys file for the sshdist user now wraps + the rsync call in an flock wrapper that acquires a shared lock on + ud-generate's lock. This prevents syncing while ud-generate runs. + * ud-lock: support supplying a status to set instead of 'retiring'. + * ud-generate: Also rebuild if one of our keyrings has changed, even if + ldap has not. + * userdir-ldap-slapd.conf.in: explicitly list readable attributes. + End with 'by * none'. + [ Stephen Gran ] * Fix deprecation warnings for sha module by using hashlib module instead * ud-fingerserv: update Net::LDAP import + * Implement audit logging for ldap + * stop running ud-generate if nothing has changed, based on audit logs - -- Peter Palfrader Mon, 15 Aug 2011 21:52:22 +0200 + [ Martin Zobel-Helas ] + * ud-generate: generate webPasswords + * ud-generate: generate voipPasswords + * ud-replicate: set correct permissions for web-passwords + * ud-replicate: set correct permissions for voip-passwords + * add freecdb to depends + * userdir-ldap.schema + - add webPasswords + - add mailPreserveSuffixSeperator + - add voipPasswords + + + -- Peter Palfrader Mon, 14 May 2012 18:45:07 +0200 userdir-ldap (0.3.79) unstable; urgency=low