+userdir-ldap (0.3.3xxx) unstable; urgency=low
+
+ * ud-mailgate: Do not commit any changes if one of the requests is invalid
+ or could not be parsed or caused an error or anything.
+ * Add sudoPassword to schema, and the slapd.conf/ACL snippet
+ A sudoPassword entry in LDAP has the form of
+ "<uuid> (confirmed|unconfirmed) <hostlist> <cryptedpassword>"
+ * ud-mailgate: Implement confirmation of sudoPassword field:
+ A confirmationation is of the form
+ "confirm sudopassword <uuid> <hostlist> <hmac_sha1("<uuid>:<hosts>:<cryptedpass>")>"
+ * ud-generate: generate a sudo passwd file
+
+ -- Peter Palfrader <weasel@debian.org> Sat, 13 Sep 2008 20:16:04 +0200
+
+userdir-ldap (0.3.36) unstable; urgency=low
+
+ * Aha. Error is not some magic variable or exception, it's a
+ normal string that needs defining when we use it.
+
+ -- Peter Palfrader <weasel@debian.org> Sat, 19 Jul 2008 21:35:39 +0200
+
+userdir-ldap (0.3.35) unstable; urgency=low
+
+ * Check if a key has encryption capabilities and fail saying so when
+ trying to encrypt stuff (like passwords) to users. All this does is
+ give nicer error messages, it previously failed with just "gpg failed".
+
+ -- Peter Palfrader <weasel@debian.org> Sat, 19 Jul 2008 16:17:13 +0200
+
+userdir-ldap (0.3.34) unstable; urgency=low
+
+ * ud-info: fix changing of DD status/DD status comment -
+ we were missing prompt information so we got a backtrace.
+ * ud-info: Warn when we don't have a prompt string for
+ attributes on startup.
+ * ud-info: Change the "retired" status to "inactive".
+ inactive covers memorial, removed, expelled more clearly.
+ * userdir_gpg.py
+ - do not use SIGEXPIRED, it's deprecated
+ - use EXPKEYSIG to tell if a signature is made by an expired key.
+ - Check that the primary key is not expired, even if we get a
+ GOODSIG status from gnupg. Based on patch by Jeremy T. Bouse.
+
+ -- Peter Palfrader <weasel@debian.org> Tue, 08 Jul 2008 14:33:08 +0200
+
+userdir-ldap (0.3.33) unstable; urgency=low
+
+ * add "security simple_bind=128" to sample slapd.conf.
+ * ud-info: Only show "Lock account" in root mode.
+ * ud-info: Add "retire developer" option that sets
+ accountStatus properly to either retiring, retired, memorial
+ or active. Active is for all currently active developers,
+ memorial is for those who have passed away and whose accounts
+ will never be reused, retiring is a developer who is retired
+ but still receives mail at their @debian.org address. After
+ a few months they should move on to retired, with their mail
+ also disabled. accountStatus is just a freeform text, but
+ these 4 options should be the only ones that exist.
+ * Allow setting of gender in ud-mailgate. Based on patch by Bernhard
+ R. Link.
+ * Add userdir-ldap-slapd.conf, a snipped to be included in slapd.conf
+ to the package.
+
+ -- Peter Palfrader <weasel@debian.org> Mon, 23 Jun 2008 22:59:02 +0200
+
+userdir-ldap (0.3.32) unstable; urgency=low
+
+ * Do SSL when connecting to the ldap server.
+
+ -- Peter Palfrader <weasel@debian.org> Fri, 23 May 2008 23:50:03 +0200
+
+userdir-ldap (0.3.31) unstable; urgency=low
+
+ [ Joerg Jaspert ]
+ * Use sync_keyrings from config file in ud-generate instead of a
+ hardcoded list
+ * Use add_keyrings from config file in ud-useradd instead of a
+ hardcoded list
+ * Use ud-config to get the emailappend value in ud-replicate, no longer
+ hardcoding @debian.org
+
+ [ Stephen Gran ]
+ * Document how to use unique overlay for uid and keyFingerPrint
+
+ -- Peter Palfrader <weasel@debian.org> Fri, 23 May 2008 10:01:51 +0200
+
+userdir-ldap (0.3.30) unstable; urgency=low
+
+ * When we touch usePassword in ud-info or ud-mailgate we now also
+ update shadowLastChange.
+ * When we lock accounts, set shadowExpire to 1. shadowExpire
+ is "days since Jan 1, 1970 that account is disabled".
+ * Properly capitalize shadowInactive and shadowExpire attributes in
+ ud-info and ud-generate.
+ * Add copyright statements to ud-info from bzr log.
+
+ -- Peter Palfrader <weasel@debian.org> Thu, 22 May 2008 22:39:10 +0200
+
+userdir-ldap (0.3.29) unstable; urgency=low
+
+ * ud-info: Add an option "L" to lock accounts in the interactive
+ interface. Locking an account sets a user's password to "{crypt}*LK*"
+ and sets a mailDisableMessage of "account locked".
+
+ -- Peter Palfrader <weasel@debian.org> Thu, 22 May 2008 21:49:19 +0200
+
+userdir-ldap (0.3.28) unstable; urgency=low
+
+ * ud-generate: Do not disable mail just because the account is locked.
+
+ -- Peter Palfrader <weasel@debian.org> Thu, 22 May 2008 21:38:56 +0200
+
userdir-ldap (0.3.27) unstable; urgency=low
* Export ssh-keys.tar.gz to [UNTRUSTED] hosts. Since we already export
projects / mirror / userdir-ldap.git / blobdiff