[gentoo-commits] gentoo-x86 commit in sys-auth/nss-ldapd: ChangeLog nss-ldapd-0.6.7-r1.ebuild nss-ldapd-0.6.7.ebuild - gentoo-commits

From:	"Doug Goldstein (cardoe)" <cardoe@g.o>
To:	gentoo-commits@l.g.o
Subject:	[gentoo-commits] gentoo-x86 commit in sys-auth/nss-ldapd: ChangeLog nss-ldapd-0.6.7-r1.ebuild nss-ldapd-0.6.7.ebuild
Date:	Thu, 02 Apr 2009 18:50:38
Message-Id:	`E1LpRzn-00074a-Cp@stork.gentoo.org`

1

cardoe      09/04/02 18:50:35

2

3

  Modified:             ChangeLog

4

  Added:                nss-ldapd-0.6.7-r1.ebuild

5

  Removed:              nss-ldapd-0.6.7.ebuild

6

  Log:

7

  Remove world read from config file to fix security issue when using bindpw field. bug #264574 CVE-2009-1073

8

  (Portage version: 2.1.6.11/cvs/Linux x86_64)

9

10

Revision  Changes    Path

11

1.4                  sys-auth/nss-ldapd/ChangeLog

12

13

file : http://sources.gentoo.org/viewcvs.py/gentoo-x86/sys-auth/nss-ldapd/ChangeLog?rev=1.4&view=markup

14

plain: http://sources.gentoo.org/viewcvs.py/gentoo-x86/sys-auth/nss-ldapd/ChangeLog?rev=1.4&content-type=text/plain

15

diff : http://sources.gentoo.org/viewcvs.py/gentoo-x86/sys-auth/nss-ldapd/ChangeLog?r1=1.3&r2=1.4

16

17

Index: ChangeLog

18

===================================================================

19

RCS file: /var/cvsroot/gentoo-x86/sys-auth/nss-ldapd/ChangeLog,v

20

retrieving revision 1.3

21

retrieving revision 1.4

22

diff -u -r1.3 -r1.4

23

--- ChangeLog	8 Dec 2008 03:00:49 -0000	1.3

24

+++ ChangeLog	2 Apr 2009 18:50:35 -0000	1.4

25

@@ -1,6 +1,13 @@

26

 # ChangeLog for sys-auth/nss-ldapd

27

-# Copyright 1999-2008 Gentoo Foundation; Distributed under the GPL v2

28

-# $Header: /var/cvsroot/gentoo-x86/sys-auth/nss-ldapd/ChangeLog,v 1.3 2008/12/08 03:00:49 jmbsvicetto Exp $

29

+# Copyright 1999-2009 Gentoo Foundation; Distributed under the GPL v2

30

+# $Header: /var/cvsroot/gentoo-x86/sys-auth/nss-ldapd/ChangeLog,v 1.4 2009/04/02 18:50:35 cardoe Exp $

31

+

32

+*nss-ldapd-0.6.7-r1 (02 Apr 2009)

33

+

34

+  02 Apr 2009; Doug Goldstein <cardoe@g.o> -nss-ldapd-0.6.7.ebuild,

35

+  +nss-ldapd-0.6.7-r1.ebuild:

36

+  Remove world read from config file to fix security issue when using bindpw

37

+  field. bug #264574 CVE-2009-1073

38

39

   08 Dec 2008; Jorge Manuel B. S. Vicetto <jmbsvicetto@g.o>

40

   metadata.xml:

1.1                  sys-auth/nss-ldapd/nss-ldapd-0.6.7-r1.ebuild

45

46

file : http://sources.gentoo.org/viewcvs.py/gentoo-x86/sys-auth/nss-ldapd/nss-ldapd-0.6.7-r1.ebuild?rev=1.1&view=markup

47

plain: http://sources.gentoo.org/viewcvs.py/gentoo-x86/sys-auth/nss-ldapd/nss-ldapd-0.6.7-r1.ebuild?rev=1.1&content-type=text/plain

48

49

Index: nss-ldapd-0.6.7-r1.ebuild

50

===================================================================

51

# Copyright 1999-2009 Gentoo Foundation

52

# Distributed under the terms of the GNU General Public License v2

53

# $Header: /var/cvsroot/gentoo-x86/sys-auth/nss-ldapd/nss-ldapd-0.6.7-r1.ebuild,v 1.1 2009/04/02 18:50:35 cardoe Exp $

54

55

inherit multilib

56

57

DESCRIPTION="NSS module for name lookups using LDAP"

58

HOMEPAGE="http://ch.tudelft.nl/~arthur/nss-ldapd/"

59

SRC_URI="http://ch.tudelft.nl/~arthur/nss-ldapd/${P}.tar.gz"

60

61

LICENSE="LGPL-2.1"

62

SLOT="0"

63

KEYWORDS="~amd64"

64

IUSE="debug kerberos sasl"

65

66

DEPEND="net-nds/openldap

67

		sasl? ( dev-libs/cyrus-sasl )

68

		kerberos? ( virtual/krb5 )

69

		!sys-auth/nss_ldap"

70

RDEPEND="${DEPEND}"

71

72

src_compile() {

73

	# nss libraries always go in /lib on Gentoo

74

	econf --enable-warnings --with-ldap-lib=openldap $(use_enable debug) \

75

		--libdir=/$(get_libdir) \

76

		|| die "econf failed"

77

	emake || die "emake failed"

78

}

79

80

src_install() {

81

	emake DESTDIR="${D}" install || die "make install failed"

82

83

	dodoc NEWS ChangeLog AUTHORS README

84

85

	# for socket and pid file

86

	keepdir /var/run/nslcd

87

88

	# init script

89

	newinitd "${FILESDIR}"/nslcd.rc nslcd

90

91

	# make an example copy

92

	insinto /usr/share/nss-ldapd

93

	doins nss-ldapd.conf

94

95

	fperms o-r /etc/nss-ldapd.conf

96

}

97

98

pkg_postinst() {

99

	elog

100

	elog "For this to work you must configure /etc/nss-ldapd.conf"

101

	elog "This configuration is similar to pam_ldap's /etc/ldap.conf"

102

	elog

103

	elog "In order to use nss-ldapd, nslcd needs to be running. You can"

104

	elog "start it like this:"

105

	elog "  # /etc/init.d/nslcd start"

106

	elog

107

	elog "You can add it to the default runlevel like so:"

108

	elog " # rc-update add nslcd default"

109

}

1	cardoe 09/04/02 18:50:35
2
3	Modified: ChangeLog
4	Added: nss-ldapd-0.6.7-r1.ebuild
5	Removed: nss-ldapd-0.6.7.ebuild
6	Log:
7	Remove world read from config file to fix security issue when using bindpw field. bug #264574 CVE-2009-1073
8	(Portage version: 2.1.6.11/cvs/Linux x86_64)
9
10	Revision Changes Path
11	1.4 sys-auth/nss-ldapd/ChangeLog
12
13	file : http://sources.gentoo.org/viewcvs.py/gentoo-x86/sys-auth/nss-ldapd/ChangeLog?rev=1.4&view=markup
14	plain: http://sources.gentoo.org/viewcvs.py/gentoo-x86/sys-auth/nss-ldapd/ChangeLog?rev=1.4&content-type=text/plain
15	diff : http://sources.gentoo.org/viewcvs.py/gentoo-x86/sys-auth/nss-ldapd/ChangeLog?r1=1.3&r2=1.4
16
17	Index: ChangeLog
18	===================================================================
19	RCS file: /var/cvsroot/gentoo-x86/sys-auth/nss-ldapd/ChangeLog,v
20	retrieving revision 1.3
21	retrieving revision 1.4
22	diff -u -r1.3 -r1.4
23	--- ChangeLog 8 Dec 2008 03:00:49 -0000 1.3
24	+++ ChangeLog 2 Apr 2009 18:50:35 -0000 1.4
25	@@ -1,6 +1,13 @@
26	# ChangeLog for sys-auth/nss-ldapd
27	-# Copyright 1999-2008 Gentoo Foundation; Distributed under the GPL v2
28	-# $Header: /var/cvsroot/gentoo-x86/sys-auth/nss-ldapd/ChangeLog,v 1.3 2008/12/08 03:00:49 jmbsvicetto Exp $
29	+# Copyright 1999-2009 Gentoo Foundation; Distributed under the GPL v2
30	+# $Header: /var/cvsroot/gentoo-x86/sys-auth/nss-ldapd/ChangeLog,v 1.4 2009/04/02 18:50:35 cardoe Exp $
31	+
32	+*nss-ldapd-0.6.7-r1 (02 Apr 2009)
33	+
34	+ 02 Apr 2009; Doug Goldstein <cardoe@g.o> -nss-ldapd-0.6.7.ebuild,
35	+ +nss-ldapd-0.6.7-r1.ebuild:
36	+ Remove world read from config file to fix security issue when using bindpw
37	+ field. bug #264574 CVE-2009-1073
38
39	08 Dec 2008; Jorge Manuel B. S. Vicetto <jmbsvicetto@g.o>
40	metadata.xml:
41
42
43
44	1.1 sys-auth/nss-ldapd/nss-ldapd-0.6.7-r1.ebuild
45
46	file : http://sources.gentoo.org/viewcvs.py/gentoo-x86/sys-auth/nss-ldapd/nss-ldapd-0.6.7-r1.ebuild?rev=1.1&view=markup
47	plain: http://sources.gentoo.org/viewcvs.py/gentoo-x86/sys-auth/nss-ldapd/nss-ldapd-0.6.7-r1.ebuild?rev=1.1&content-type=text/plain
48
49	Index: nss-ldapd-0.6.7-r1.ebuild
50	===================================================================
51	# Copyright 1999-2009 Gentoo Foundation
52	# Distributed under the terms of the GNU General Public License v2
53	# $Header: /var/cvsroot/gentoo-x86/sys-auth/nss-ldapd/nss-ldapd-0.6.7-r1.ebuild,v 1.1 2009/04/02 18:50:35 cardoe Exp $
54
55	inherit multilib
56
57	DESCRIPTION="NSS module for name lookups using LDAP"
58	HOMEPAGE="http://ch.tudelft.nl/~arthur/nss-ldapd/"
59	SRC_URI="http://ch.tudelft.nl/~arthur/nss-ldapd/${P}.tar.gz"
60
61	LICENSE="LGPL-2.1"
62	SLOT="0"
63	KEYWORDS="~amd64"
64	IUSE="debug kerberos sasl"
65
66	DEPEND="net-nds/openldap
67	sasl? ( dev-libs/cyrus-sasl )
68	kerberos? ( virtual/krb5 )
69	!sys-auth/nss_ldap"
70	RDEPEND="${DEPEND}"
71
72	src_compile() {
73	# nss libraries always go in /lib on Gentoo
74	econf --enable-warnings --with-ldap-lib=openldap $(use_enable debug) \
75	--libdir=/$(get_libdir) \
76	\|\| die "econf failed"
77	emake \|\| die "emake failed"
78	}
79
80	src_install() {
81	emake DESTDIR="${D}" install \|\| die "make install failed"
82
83	dodoc NEWS ChangeLog AUTHORS README
84
85	# for socket and pid file
86	keepdir /var/run/nslcd
87
88	# init script
89	newinitd "${FILESDIR}"/nslcd.rc nslcd
90
91	# make an example copy
92	insinto /usr/share/nss-ldapd
93	doins nss-ldapd.conf
94
95	fperms o-r /etc/nss-ldapd.conf
96	}
97
98	pkg_postinst() {
99	elog
100	elog "For this to work you must configure /etc/nss-ldapd.conf"
101	elog "This configuration is similar to pam_ldap's /etc/ldap.conf"
102	elog
103	elog "In order to use nss-ldapd, nslcd needs to be running. You can"
104	elog "start it like this:"
105	elog " # /etc/init.d/nslcd start"
106	elog
107	elog "You can add it to the default runlevel like so:"
108	elog " # rc-update add nslcd default"
109	}

Gentoo Archives: gentoo-commits