Make sure we only link with kerberos llibraries if kerberos features
are enabled. Otherwise we produce a binaruy that requires unused
libraries, which is a liability when we try to use it on a system
where they are not installed.
Problems found with existing distfiles:
distfiles/D6.data.ros.gz
distfiles/cstore0.2.tar.gz
distfiles/data4.tar.gz
distfiles/sphinx-2.2.7-release.tar.gz
No changes made to the cstore or mariadb55-client distinfo files.
Otherwise, existing SHA1 digests verified and found to be the same on
the machine holding the existing distfiles (morden). All existing
SHA1 digests retained for now as an audit trail.
is useful to disable it if OpenLDAP was linked with pkgsrc's OpenSSL, since
nss_ldap will pull the base system OpenSSL dependency through Kerberos
libraries, leading to crashes because of multiple incomaptible libcrypto
linked.
* fix: add versioning information to binary
* fix: add AM_MAINTAINER_MODE
* fix: bad LDAP query for ether lookups
* fix: clarify bind timelimit defaults in ldap.conf
* fix: call do_close() if ldap_result() or ldap_parse_result() fails
(before returning NSS_UNAVAIL)
* fix: FreeBSD thread library check
* fix: deallocate context in
_nss_ldap_ent_context_release() to avoid bad usage
* fix: don't leak file descriptors in _nss_ldap_readconfig
Changes 264:
* fix: MAP_H_ERRNO() should map NSS_TRYAGAIN to NETDB_INTERNAL not TRY_AGAIN
* fix: ldaps:// URIs only work if "ssl on" is set
* fix: nss_ldap exposes malformed entries to the system
Changes 263:
* fix: nss_ldap returns success from setnetgrent() when the requested netgroup
doesn't exist
* fix: getXXent() only returns NULL once before implicitly calling
setXXent(), whereas other backends continue to return NULL
Changes 262:
* fix: nss_ldap fails to work on Solaris without that patch applied
Changes 261:
* fix: ldap.conf template is missing a comment in the first line
This fixes the problem reported by Petr Janda per PR port-i386/33974,
where getgr{ent,nam,gid} failed if there were many (> ~50) users
in a group.
bump PKGREVISION
information fron different sources correctly,
also sort out duplicate group IDs as the libc backends do
fixes PR pkg/32988 by Stephan Thesing
bump PKGREVISION
developer is officially maintaining the package.
The rationale for changing this from "tech-pkg" to "pkgsrc-users" is
that it implies that any user can try to maintain the package (by
submitting patches to the mailing list). Since the folks most likely
to care about the package are the folks that want to use it or are
already using it, this would leverage the energy of users who aren't
developers.
and referrals are used together (http://secunia.com/advisories/15906/)
mostly from Adrian Portelli, tested by me
(The most recent version 242 kills the system completely if the LDAP
server is not running -- endless connection retries.)
