From: | "Doug Goldstein (cardoe)" <cardoe@g.o> |
---|---|
To: | gentoo-commits@l.g.o |
Subject: | [gentoo-commits] gentoo-x86 commit in sys-auth/nss-ldapd: ChangeLog nss-ldapd-0.6.7-r1.ebuild nss-ldapd-0.6.7.ebuild |
Date: | Thu, 02 Apr 2009 18:50:38 |
Message-Id: | E1LpRzn-00074a-Cp@stork.gentoo.org |
1 | cardoe 09/04/02 18:50:35 |
2 | |
3 | Modified: ChangeLog |
4 | Added: nss-ldapd-0.6.7-r1.ebuild |
5 | Removed: nss-ldapd-0.6.7.ebuild |
6 | Log: |
7 | Remove world read from config file to fix security issue when using bindpw field. bug #264574 CVE-2009-1073 |
8 | (Portage version: 2.1.6.11/cvs/Linux x86_64) |
9 | |
10 | Revision Changes Path |
11 | 1.4 sys-auth/nss-ldapd/ChangeLog |
12 | |
13 | file : http://sources.gentoo.org/viewcvs.py/gentoo-x86/sys-auth/nss-ldapd/ChangeLog?rev=1.4&view=markup |
14 | plain: http://sources.gentoo.org/viewcvs.py/gentoo-x86/sys-auth/nss-ldapd/ChangeLog?rev=1.4&content-type=text/plain |
15 | diff : http://sources.gentoo.org/viewcvs.py/gentoo-x86/sys-auth/nss-ldapd/ChangeLog?r1=1.3&r2=1.4 |
16 | |
17 | Index: ChangeLog |
18 | =================================================================== |
19 | RCS file: /var/cvsroot/gentoo-x86/sys-auth/nss-ldapd/ChangeLog,v |
20 | retrieving revision 1.3 |
21 | retrieving revision 1.4 |
22 | diff -u -r1.3 -r1.4 |
23 | --- ChangeLog 8 Dec 2008 03:00:49 -0000 1.3 |
24 | +++ ChangeLog 2 Apr 2009 18:50:35 -0000 1.4 |
25 | @@ -1,6 +1,13 @@ |
26 | # ChangeLog for sys-auth/nss-ldapd |
27 | -# Copyright 1999-2008 Gentoo Foundation; Distributed under the GPL v2 |
28 | -# $Header: /var/cvsroot/gentoo-x86/sys-auth/nss-ldapd/ChangeLog,v 1.3 2008/12/08 03:00:49 jmbsvicetto Exp $ |
29 | +# Copyright 1999-2009 Gentoo Foundation; Distributed under the GPL v2 |
30 | +# $Header: /var/cvsroot/gentoo-x86/sys-auth/nss-ldapd/ChangeLog,v 1.4 2009/04/02 18:50:35 cardoe Exp $ |
31 | + |
32 | +*nss-ldapd-0.6.7-r1 (02 Apr 2009) |
33 | + |
34 | + 02 Apr 2009; Doug Goldstein <cardoe@g.o> -nss-ldapd-0.6.7.ebuild, |
35 | + +nss-ldapd-0.6.7-r1.ebuild: |
36 | + Remove world read from config file to fix security issue when using bindpw |
37 | + field. bug #264574 CVE-2009-1073 |
38 | |
39 | 08 Dec 2008; Jorge Manuel B. S. Vicetto <jmbsvicetto@g.o> |
40 | metadata.xml: |
41 | |
42 | |
43 | |
44 | 1.1 sys-auth/nss-ldapd/nss-ldapd-0.6.7-r1.ebuild |
45 | |
46 | file : http://sources.gentoo.org/viewcvs.py/gentoo-x86/sys-auth/nss-ldapd/nss-ldapd-0.6.7-r1.ebuild?rev=1.1&view=markup |
47 | plain: http://sources.gentoo.org/viewcvs.py/gentoo-x86/sys-auth/nss-ldapd/nss-ldapd-0.6.7-r1.ebuild?rev=1.1&content-type=text/plain |
48 | |
49 | Index: nss-ldapd-0.6.7-r1.ebuild |
50 | =================================================================== |
51 | # Copyright 1999-2009 Gentoo Foundation |
52 | # Distributed under the terms of the GNU General Public License v2 |
53 | # $Header: /var/cvsroot/gentoo-x86/sys-auth/nss-ldapd/nss-ldapd-0.6.7-r1.ebuild,v 1.1 2009/04/02 18:50:35 cardoe Exp $ |
54 | |
55 | inherit multilib |
56 | |
57 | DESCRIPTION="NSS module for name lookups using LDAP" |
58 | HOMEPAGE="http://ch.tudelft.nl/~arthur/nss-ldapd/" |
59 | SRC_URI="http://ch.tudelft.nl/~arthur/nss-ldapd/${P}.tar.gz" |
60 | |
61 | LICENSE="LGPL-2.1" |
62 | SLOT="0" |
63 | KEYWORDS="~amd64" |
64 | IUSE="debug kerberos sasl" |
65 | |
66 | DEPEND="net-nds/openldap |
67 | sasl? ( dev-libs/cyrus-sasl ) |
68 | kerberos? ( virtual/krb5 ) |
69 | !sys-auth/nss_ldap" |
70 | RDEPEND="${DEPEND}" |
71 | |
72 | src_compile() { |
73 | # nss libraries always go in /lib on Gentoo |
74 | econf --enable-warnings --with-ldap-lib=openldap $(use_enable debug) \ |
75 | --libdir=/$(get_libdir) \ |
76 | || die "econf failed" |
77 | emake || die "emake failed" |
78 | } |
79 | |
80 | src_install() { |
81 | emake DESTDIR="${D}" install || die "make install failed" |
82 | |
83 | dodoc NEWS ChangeLog AUTHORS README |
84 | |
85 | # for socket and pid file |
86 | keepdir /var/run/nslcd |
87 | |
88 | # init script |
89 | newinitd "${FILESDIR}"/nslcd.rc nslcd |
90 | |
91 | # make an example copy |
92 | insinto /usr/share/nss-ldapd |
93 | doins nss-ldapd.conf |
94 | |
95 | fperms o-r /etc/nss-ldapd.conf |
96 | } |
97 | |
98 | pkg_postinst() { |
99 | elog |
100 | elog "For this to work you must configure /etc/nss-ldapd.conf" |
101 | elog "This configuration is similar to pam_ldap's /etc/ldap.conf" |
102 | elog |
103 | elog "In order to use nss-ldapd, nslcd needs to be running. You can" |
104 | elog "start it like this:" |
105 | elog " # /etc/init.d/nslcd start" |
106 | elog |
107 | elog "You can add it to the default runlevel like so:" |
108 | elog " # rc-update add nslcd default" |
109 | } |